https://flyte.org logo
Powered by
#ask-the-community
Title
# ask-the-community
a

Alexander Sarson

07/13/2023, 11:18 AM
Hi i am trying to setup flyte with SSO to keycloak but I am getting the following error:
Copy code
Error: [AUTH_CONTEXT_SETUP_FAILED] Error creating oidc provider w/ issuer [<https://keycloak.XXX.XXX.XXX/realms/XXX>], caused by: Get "<https://keycloak.XXX.XXX.XXX/realms/XXX/.well-known/openid-configuration>": x509: certificate signed by unknown authority
We are using our own internal PKI infrastructure. How can I get Flyte to trust our internal CA ?
I found the solution. I created a configmap with my certificate (pem file) and mounted it into flyteadmin like this:
Copy code
flyteadmin:
  additionalVolumes:
  - name: ca-pemstore
    configMap:
      name: ca-pemstore
  additionalVolumeMounts:
  - name: ca-pemstore
    mountPath: /etc/ssl/certs/devmlearn.pem
    subPath: devmlearn.pem
    readOnly: false
d

David Espejo (he/him)

07/13/2023, 2:23 PM
@Alexander Sarson thanks for sharing
8 Views
Powered by