Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

tsh play against a remote trusted cluster session uses a default API domain #17192

Closed
mdwn opened this issue Oct 7, 2022 · 4 comments
Closed

tsh play against a remote trusted cluster session uses a default API domain #17192

mdwn opened this issue Oct 7, 2022 · 4 comments
Assignees
@vitorenesduarte
Labels
bug tsh tsh - Teleport's command line tool for logging into nodes running Teleport.

Comments

@mdwn
Copy link
Contributor

mdwn commented Oct 7, 2022
edited
Loading

Expected behavior:

When issuing tsh play against a session recorded on a remote trusted cluster, it should work.

Current behavior:

An error message is output.

Bug details:

  • Teleport version 11.0.0-alpha2
  • Recreation steps
    • Set up a root cluster and a remote trusted cluster.
    • Create a session on a node on the remote cluster while logged into the root cluster.
    • Attempt to play the session while logged into the root cluster.
  • Debug logs
tsh play --cluster=test11.trustedteleport ee7b939d-749c-48e3-9ade-f17420b105d1
ERROR: Get "https://teleport.cluster.local/v2/namespaces/default/sessions/ee7b939d-749c-48e3-9ade-f17420b105d1/events?print=true": EOF
@mdwn mdwn added the bug label Oct 7, 2022
@mdwn mdwn mentioned this issue Oct 7, 2022
Closed
@zmb3
Copy link
Collaborator

zmb3 commented Oct 12, 2022

Did you actually run teleport tsh play or is that just a copy paste error?

@mdwn
Copy link
Contributor Author

mdwn commented Oct 13, 2022

Did you actually run teleport tsh play or is that just a copy paste error?

Ah no, it's an artifact of my zsh shell and the directory I was in. I'll remove that so it's more clear.

@zmb3 zmb3 added the tsh tsh - Teleport's command line tool for logging into nodes running Teleport. label Dec 8, 2022
@vitorenesduarte
Copy link
Contributor

@mdwn I followed the trusted clusters guide and couldn't reproduce this.

I only got one error when I tried to play the session:

build/tsh play --cluster=vitor22.teleport.sh df7248b7-dbfd-46ea-a25e-fb7fc94e88f4
ERROR: access denied to perform action "read" on "session"

But tsh play worked after I updated the visitor role to include the following:

    rules:
    - resources:
      - session
      verbs:
      - list
      - read

@vitorenesduarte
Copy link
Contributor

Closing after syncing with @mdwn as this was likely an operator error.

@vitorenesduarte vitorenesduarte closed this as not planned Won't fix, can't repro, duplicate, stale Jan 12, 2023
@vitorenesduarte vitorenesduarte self-assigned this Jan 12, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@vitorenesduarte vitorenesduarte

Labels
bug tsh tsh - Teleport's command line tool for logging into nodes running Teleport.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@mdwn @vitorenesduarte @zmb3