Channels
#ask-the-community
Title
# ask-the-community
h
Haytham Amin
08/10/2023, 6:04 PMHello! Im trying to pass admin domain cert to flytecli but not working! What am I missing?
Copy code
cat ./flyteconfig.yaml
admin:
endpoint: dns:///localhost:8089
insecure: true
insecureSkipVerify: true
authType: ClientSecret
clientId: flytepropeller
clientSecretEnvVar: [MASKED]
caCertFilePath: ./flyte_cert.cer
{"json":{},"level":"warning","msg":"failed to get token: %!w(*url.Error=\u0026{Post https://<DOMAIN>/oauth2/token {0xc000ad8000 \u003cnil\u003e \u003cnil\u003e}})","ts":"2023-08-10T17:59:58Z"}
Error: Connection Info: [Endpoint: dns:///localhost:8089, InsecureConnection?: true, AuthMode: ClientSecret]: rpc error: code = Unauthenticated desc = transport: per-RPC creds failed due to error: failed to get token: Post "https://<DOMAIN>/oauth2/token": x509: certificate signed by unknown authority
{"json":{},"level":"error","msg":"Connection Info: [Endpoint: dns:///localhost:8089, InsecureConnection?: true, AuthMode: ClientSecret]: rpc error: code = Unauthenticated desc = transport: per-RPC creds failed due to error: failed to get token: Post \"https://<DOMAIN>/oauth2/token\": x509: certificate signed by unknown authority","ts":"2023-08-10T17:59:58Z"}y
Yee
08/10/2023, 6:29 PM
if you’re using a cert, should insecure be false?
also the cert is for talking to admin, which auth provider are you using?
h
Haytham Amin
08/10/2023, 7:49 PMbut im hitting endpoint localhost:8089 after port frorwarding
http service behind ingress and auth using external auth oidc and internal clinetsecret
y
Yee
08/10/2023, 9:37 PM
there’s only one endpoint though… it’s the admin host. what’s your port forward command?
11 Views