1876471 – auth-operator: RouterCertsDegraded message impossible to understand

Bug 1876471 - auth-operator: RouterCertsDegraded message impossible to understand

Summary: auth-operator: RouterCertsDegraded message impossible to understand

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	OpenShift Container Platform
Classification:	Red Hat
Component:	apiserver-auth
Sub Component:
Version:	4.6
Hardware:	Unspecified
OS:	Unspecified
Priority:	high
Severity:	high
Target Milestone:	---
Target Release:	4.6.0
Assignee:	Michal Fojtik
QA Contact:	pmali
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2020-09-07 09:51 UTC by Stefan Schimanski
Modified:	2020-10-27 16:38 UTC (History)
CC List:	3 users (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:	2020-10-27 16:38:24 UTC
Target Upstream Version:
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Github	openshift cluster-authentication-operator pull 336	0	None	closed	Bug 1876471: Add ingress-operator as provider for router-certs	2021-01-18 02:08:42 UTC
Red Hat Product Errata	RHBA-2020:4196	0	None	None	None	2020-10-27 16:38:38 UTC

Internal Links: 1879253

Description Stefan Schimanski 2020-09-07 09:51:19 UTC

Description of problem:

The authentication operator reports a route problem. But it is not clear from the message what is broken. Is this an auth operator issue? Is routing broken?

                    {
                        "lastTransitionTime": "2020-09-01T09:53:37Z",
                        "message": "RouterCertsDegraded: secret/v4-0-config-system-router-certs -n openshift-authentication: could not be retrieved: secret \"v4-0-config-system-router-certs\" not found\nConfigObservationDegraded: secret \"v4-0-config-system-router-certs\" not found\nIngressStateEndpointsDegraded: No endpoints found for oauth-server",
                        "reason": "ConfigObservation_Error::IngressStateEndpoints_MissingEndpoints::RouterCerts_NoRouterCertSecret",
                        "status": "True",
                        "type": "Degraded"
                    },

Expected results:

A message that a user can understand and which points to the faulty component.

Comment 5 errata-xmlrpc 2020-10-27 16:38:24 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (OpenShift Container Platform 4.6 GA Images), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2020:4196

Note You need to log in before you can comment on or make changes to this bug.