https://flyte.org logo
#flyte-deployment
Title
# flyte-deployment
m

Michael Tinsley

05/31/2023, 11:05 AM
Is there any information on requirements for internal
clientSecret
and corresponding
clientSecretHash
define here ? Or if there is a recommended way to generate these?
d

David Espejo (he/him)

05/31/2023, 8:01 PM
sorry @Yee I also have the same question I can help with docs/guide for this. Besides the comment in the chart, still unsure on what are accepted formats/options for those keys
y

Yee

06/01/2023, 4:09 PM
no i don’t think so. just make one.
the only restriction is yaml.
i’d stick to normal characters, shouldn’t have new lines or anything in there
david has the bcrypt command documented if you need for the hash
d

David Espejo (he/him)

06/01/2023, 4:43 PM
@Michael Tinsley that would be
Copy code
pip install bcrypt && python -c 'import bcrypt; import base64; print(base64.b64encode(bcrypt.hashpw("<your_client-secret>".encode("utf-8"), bcrypt.gensalt(6))))'
m

Michael Tinsley

06/02/2023, 12:12 PM
Thats great, thank you both - I will give that a shot 👍
Sorry for the delay but 🙌 Auth is working for me now, however I am having issues with flytectl with OIDC… according to the documentation it should be picked up, but I’m getting a 464 response (apparently an AWS ALB custom response) - I’m digging into it now, but is there any obvious thing I might be missing? And @David Espejo (he/him), I’d be happy to make a PR to your
flyte-the-hard-way
repo with the auth setup if that would be helpful?
d

David Espejo (he/him)

06/12/2023, 2:37 PM
@Michael Tinsley I'm glad you're moving closer. I will have a PR soon with instructions in the repo and will add you as reviewer if you don't mind Regarding the 464 error, how's your ingress configured, or what's the output of
kubectl get ingress -n <your-namespace>
?
m

Michael Tinsley

06/12/2023, 3:01 PM
Untitled
Yep sounds good, thank you 👍 This is the current configuration
2 Views