Hello! Im trying to pass admin domain cert to flyt...
# flyte-supportc
creamy-greece-49911
08/10/2023, 6:04 PMHello! Im trying to pass admin domain cert to flytecli but not working! What am I missing?
Copy code
cat ./flyteconfig.yaml
admin:
endpoint: dns:///localhost:8089
insecure: true
insecureSkipVerify: true
authType: ClientSecret
clientId: flytepropeller
clientSecretEnvVar: [MASKED]
caCertFilePath: ./flyte_cert.cer
{"json":{},"level":"warning","msg":"failed to get token: %!w(*url.Error=\u0026{Post https://<DOMAIN>/oauth2/token {0xc000ad8000 \u003cnil\u003e \u003cnil\u003e}})","ts":"2023-08-10T17:59:58Z"}
Error: Connection Info: [Endpoint: dns:///localhost:8089, InsecureConnection?: true, AuthMode: ClientSecret]: rpc error: code = Unauthenticated desc = transport: per-RPC creds failed due to error: failed to get token: Post "https://<DOMAIN>/oauth2/token": x509: certificate signed by unknown authority
{"json":{},"level":"error","msg":"Connection Info: [Endpoint: dns:///localhost:8089, InsecureConnection?: true, AuthMode: ClientSecret]: rpc error: code = Unauthenticated desc = transport: per-RPC creds failed due to error: failed to get token: Post \"https://<DOMAIN>/oauth2/token\": x509: certificate signed by unknown authority","ts":"2023-08-10T17:59:58Z"}t
thankful-minister-83577
08/10/2023, 6:29 PM
if you’re using a cert, should insecure be false?
thankful-minister-83577
08/10/2023, 6:29 PM
also the cert is for talking to admin, which auth provider are you using?
c
creamy-greece-49911
08/10/2023, 7:49 PMbut im hitting endpoint localhost:8089 after port frorwarding
creamy-greece-49911
08/10/2023, 7:50 PMhttp service behind ingress and auth using external auth oidc and internal clinetsecret
t
thankful-minister-83577
08/10/2023, 9:37 PM
there’s only one endpoint though… it’s the admin host. what’s your port forward command?
16 Views