salmon-stone-89503
02/20/2023, 4:21 PMflytescheduler
and flytepropeller
logs.
Logs from flytescheduler
:
flytescheduler-check panic: rpc error: code = Unauthenticated desc = transport: per-RPC creds failed due to error: oauth2: cannot fetch token: 401 Unauthorized
flytescheduler-check Response: {"error":"invalid_client","error_description":"Client authentication failed (e.g., unknown client, no client authentication included, or unsupported authentication method)."} │
flytescheduler-check
flytescheduler-check goroutine 1 [running]:
flytescheduler-check main.main()
flytescheduler-check /go/src/github.com/flyteorg/flyteadmin/cmd/scheduler/main.go:12 +0x85
My current setup is:
configmap:
adminServer:
auth:
authorizedUris:
- <internal domain>
- <https://localhost:30081>
- <http://flyteadmin:80>
- <http://flyteadmin.flyte.svc.cluster.local:80>
userAuth:
openId:
baseUrl: <https://accounts.google.com>
clientId: <id>.<http://apps.googleusercontent.com|apps.googleusercontent.com>
scopes:
- profile
- openid
server:
httpPort: 8088
grpcPort: 8089
security:
secure: false
useAuth: true
allowCors: true
allowedOrigins:
# Accepting all domains for Sandbox installation
- "*"
allowedHeaders:
- "Content-Type"
I've tried adding appAuth
(same level as userAuth
) but can't seem to figure out a proper configuration.
Any help on what to do next would be much appreciated.cool-lifeguard-49380
02/20/2023, 5:16 PMCopy link
on the first message 🤔)cool-lifeguard-49380
02/20/2023, 5:16 PMaverage-finland-92144
02/20/2023, 8:04 PMsalmon-stone-89503
02/21/2023, 2:08 PMhallowed-doctor-67759
02/28/2023, 6:47 PMaverage-finland-92144
02/28/2023, 7:25 PMhallowed-doctor-67759
02/28/2023, 7:30 PMhallowed-doctor-67759
02/28/2023, 11:17 PMclient_secret
is put into this K8s secret:
{{- if .Values.secrets.adminOauthClientCredentials.enabled }}
apiVersion: v1
kind: Secret
metadata:
name: flyte-secret-auth
namespace: {{ template "flyte.namespace" . }}
type: Opaque
stringData:
{{- with .Values.secrets.adminOauthClientCredentials.clientSecret }}
client_secret: {{ tpl (toYaml .) $ }}
{{- end }}
{{- end }}
hallowed-doctor-67759
03/01/2023, 3:38 PMaverage-finland-92144
03/01/2023, 4:14 PMhallowed-doctor-67759
03/01/2023, 5:19 PM