Hello! :wave:
I have asked about problems with au...
# ask-the-communityl
lgladh
03/01/2023, 11:12 AMHello! š
I have asked about problems with authentication (Azure oidc) earlier. This week I tried creating an entire new deployment using flyte-binary instead. However, this gives me the same problems during the redirect callback. In short:
Error generating encrypted accesstoken cookie [SECURE_COOKIE_ERROR] Error creating secure cookie, caused by: securecookie: the value is too longError setting encrypted JWT cookie [SECURE_COOKIE_ERROR] Error creating secure cookie, caused by: securecookie: the value is too longlgladh
03/01/2023, 4:01 PMIf it helps, there are additional logs leading up to this problem. For example:
Could not detect existing cookie [flyte_idt]. Error: http: named cookie not presentCould not retrieve bearer token from metadata rpc error: code = Unauthenticated desc = Request unauthenticated with BearerFailed to parse Access Token from context. Will attempt to find IDToken. Error: [JWT_VERIFICATION_FAILED] Could not retrieve bearer token from metadata, caused by: rpc error: code = Unauthenticated desc = Request unauthenticated with Bearers
Samhita Alla
03/02/2023, 4:41 AM
@Yee, any idea how Igladh should be going about to resolve this issue?
Samhita Alla
03/02/2023, 4:44 AM
@lgladh, I recommend you to go through this thread as well: https://discuss.flyte.org/t/20995/Thank-you-U038FT3LCRE.
l
lgladh
03/02/2023, 12:13 PMHi, @Samhita Alla
As mentioned in the thread, I took a look to see if there were any additional claims on the azure side, but the list was empty so I guess not? Or are there other ways to check if there are additional claims? I can configure the existing one, but it's hard for me to just create a new app, that is something I have to request.
y
Yee
03/02/2023, 5:50 PM
so a lot of those log lines are just warnings, itās okay.
Yee
03/02/2023, 5:51 PM
the proper flow is for users to request protected resources on admin, admin checks that thereās no token present in any of the headers/cookies and returns a 401
Yee
03/02/2023, 5:51 PM
but that first error is weird, where are you seeing that? is that a browser error?
Yee
03/02/2023, 5:54 PM
no thatās a cookie manager error
j
JoĆ£o Lobo Guerra Neto
03/02/2023, 7:41 PMwere you able to authenticate through azure? If so, could you share how you did it? @lgladh
JoĆ£o Lobo Guerra Neto
03/02/2023, 7:42 PMwhen I click in login, I got this error and redirect link
JoĆ£o Lobo Guerra Neto
03/02/2023, 7:42 PMnow all service is done, so I donāt know what happen
JoĆ£o Lobo Guerra Neto
03/02/2023, 7:43 PMnow all service is done, so I donāt know what happen
l
lgladh
03/03/2023, 7:30 AM@JoĆ£o Lobo Guerra Neto I don't have auth working yet and I am also not familiar to the error you have. Looks as though your auth is not set up correctly or not enabled. Check out https://docs.flyte.org/en/latest/deployment/configuration/auth_setup.html.
If you have more trouble, you should probably start another thread as it seems unrelated to this one.
lgladh
03/03/2023, 7:33 AM@Yee, Yes so cookie_manager.go/handlers.go is failing to generate the access token cookie, and I see that part is missing in the cookie.
lgladh
03/03/2023, 7:36 AMI am not sure if there is anything I can do that affect that part?
y
Yee
03/03/2023, 5:46 PM
could you file an issue?
Yee
03/03/2023, 5:47 PM
i will look at it on monday - kinda busy today
159 Views