REPRODUCING THIS BUG REQUIRES ENABLING TECH PREVIEW FEATURES ON THE TARGET CLUSTER, WHICH IS AN IRREVERSIBLE ACTION, WILL DISABLE CLUSTER UPGRADES, AND NULLS RED HAT SUPPORT OF THE CLUSTER. ONLY ATTEMPT TO REPRODUCE THIS BUG ON A DEVELOPMENT CLUSTER WHERE THE ABOVE LIMITATIONS ARE ACCEPTABLE.

Description of problem:
Multicluster tech preview - first login to managed cluster causes an auth redirect loop if old cookies have not been clear after updating from 4.9 t o4.10

Version-Release number of selected component (if applicable):
4.10

How reproducible:
Almost always



Steps to Reproduce:
1. Log in to the console of a 4.9 or older cluster
2. Upgrade the same cluster to 4.10 (either through the web UI or CLI)
3. Install ACM 2.5+
4. Import or provision a managed cluster through ACM

**STEP 5 IS IRREVERSIBLE, WILL DISABLE CLUSTER UPGRADES AND MAKE THE CLUSTER UNSUPPORTED. PROCEED WITH CAUTION**

5. Enable the multicluster tech preview by adding "TechPreviewNoUpgrade" to featuregate.config.openshift.io/cluster spec.featureSet property.
6. Make sure you use the same browser as step 1 and do not use a new incognito window or clear cookies. We need to preserve the cookies that were created when logging into the 4.9 console. Give the console operator time to re-deploy the console with the multicluster config and then refresh the browser. You should eventually see the cluster switcher appear with the imported/provisioned cluster from step 4 shown (granted the cluster is available).
7. Select the managed cluster from the cluster dropdown
8. Log in to the managed cluster

Actual results:
The user enters an auth redirect loop

Expected results:
The user should successfully authenticate to the managed cluster and be redirected to the web console.


Additional info:
This is a known issue with a work-around. Clearing old cookies from the browser that was used to log into the cluster pre-update resolves the issue.