Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.

Bug 1442332

Summary: Host inventory configuration for limitSecretReferences: true
Product: OpenShift Container Platform Reporter: Vladislav Walek <vwalek>
Component: InstallerAssignee: Scott Dodson <sdodson>
Status: CLOSED ERRATA QA Contact: Johnny Liu <jialiu>
Severity: medium Docs Contact:
Priority: medium    
Version: 3.4.1CC: aos-bugs, eparis, erich, jokerman, kwoodson, mmccomas
Target Milestone: ---   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Enhancement
Doc Text:
The master configuration item "serviceAccountConfig.limitSecretReferences" may now be set via the installation playbooks by setting the variable openshift_master_saconfig_limitsecretreferences=true or openshift_master_saconfig_limitsecretreferences=false.
 Story Points: ---
Clone Of:
: 1474816 (view as bug list) Environment:
Last Closed: 2017-08-10 05:20:02 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1474816    

Description Vladislav Walek 2017-04-14 07:10:38 UTC 
Description of problem:

Customer is requesting a request for code change, to add parameter in ansible inventory file that during the installation following will be added to master-config.yaml file:
 
serviceAccountConfig: 
     limitSecretReferences: true 


Version-Release number of selected component (if applicable):

OpenShift Container Platform 3.4.0

Additional info:

Example:

openshift_limit_secret_references=true
Comment 1 Brenton Leanhardt 2017-04-27 13:12:34 UTC 
This will be tracked as a bug.
Comment 3 Kenny Woodson 2017-06-22 13:57:20 UTC 
New code added here: https://github.com/openshift/openshift-ansible/pull/4516
Comment 6 Johnny Liu 2017-06-26 07:12:11 UTC 
Verified this bug with openshift-ansible-3.6.124-1.git.0.507a059.el7.noarch, and PASS.

After set openshift_master_saconfig_limitsecretreferences=true in inventory host file, the following lines are set in /etc/origin/master/master-config.yaml
# vim /etc/origin/master/master-config.yaml
<--snip-->
serviceAccountConfig:
  limitSecretReferences: true
<--snip-->
Comment 9 errata-xmlrpc 2017-08-10 05:20:02 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHEA-2017:1716