Hello! :wave:
I have asked about problems with au...
# flyte-supporta
adventurous-crowd-12239
03/01/2023, 11:12 AMHello! 👋
I have asked about problems with authentication (Azure oidc) earlier. This week I tried creating an entire new deployment using flyte-binary instead. However, this gives me the same problems during the redirect callback. In short:
Error generating encrypted accesstoken cookie [SECURE_COOKIE_ERROR] Error creating secure cookie, caused by: securecookie: the value is too longError setting encrypted JWT cookie [SECURE_COOKIE_ERROR] Error creating secure cookie, caused by: securecookie: the value is too long👍 1
adventurous-crowd-12239
03/01/2023, 4:01 PMIf it helps, there are additional logs leading up to this problem. For example:
Could not detect existing cookie [flyte_idt]. Error: http: named cookie not presentCould not retrieve bearer token from metadata rpc error: code = Unauthenticated desc = Request unauthenticated with BearerFailed to parse Access Token from context. Will attempt to find IDToken. Error: [JWT_VERIFICATION_FAILED] Could not retrieve bearer token from metadata, caused by: rpc error: code = Unauthenticated desc = Request unauthenticated with Bearert
tall-lock-23197
03/02/2023, 4:41 AM
@thankful-minister-83577, any idea how Igladh should be going about to resolve this issue?
tall-lock-23197
03/02/2023, 4:44 AM
@adventurous-crowd-12239, I recommend you to go through this thread as well: https://discuss.flyte.org/t/20995/Thank-you-U038FT3LCRE.
a
adventurous-crowd-12239
03/02/2023, 12:13 PMHi, @tall-lock-23197
As mentioned in the thread, I took a look to see if there were any additional claims on the azure side, but the list was empty so I guess not? Or are there other ways to check if there are additional claims? I can configure the existing one, but it's hard for me to just create a new app, that is something I have to request.
t
thankful-minister-83577
03/02/2023, 5:50 PM
so a lot of those log lines are just warnings, it’s okay.
thankful-minister-83577
03/02/2023, 5:51 PM
the proper flow is for users to request protected resources on admin, admin checks that there’s no token present in any of the headers/cookies and returns a 401
thankful-minister-83577
03/02/2023, 5:51 PM
but that first error is weird, where are you seeing that? is that a browser error?
thankful-minister-83577
03/02/2023, 5:54 PM
no that’s a cookie manager error
s
swift-byte-26134
03/02/2023, 7:41 PMwere you able to authenticate through azure? If so, could you share how you did it? @adventurous-crowd-12239
swift-byte-26134
03/02/2023, 7:42 PMwhen I click in login, I got this error and redirect link
swift-byte-26134
03/02/2023, 7:42 PMnow all service is done, so I don’t know what happen
swift-byte-26134
03/02/2023, 7:43 PMnow all service is done, so I don’t know what happen
a
adventurous-crowd-12239
03/03/2023, 7:30 AM@swift-byte-26134 I don't have auth working yet and I am also not familiar to the error you have. Looks as though your auth is not set up correctly or not enabled. Check out https://docs.flyte.org/en/latest/deployment/configuration/auth_setup.html.
If you have more trouble, you should probably start another thread as it seems unrelated to this one.
adventurous-crowd-12239
03/03/2023, 7:33 AM@thankful-minister-83577, Yes so cookie_manager.go/handlers.go is failing to generate the access token cookie, and I see that part is missing in the cookie.
adventurous-crowd-12239
03/03/2023, 7:36 AMI am not sure if there is anything I can do that affect that part?
t
thankful-minister-83577
03/03/2023, 5:46 PM
could you file an issue?
👍 1
thankful-minister-83577
03/03/2023, 5:47 PM
i will look at it on monday - kinda busy today
163 Views