Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

X509: certificate signed by unknown authority during Dex-Grafana oauth setup #2384

Open
Ebaneck opened this issue Apr 7, 2020 · 0 comments
Open

X509: certificate signed by unknown authority during Dex-Grafana oauth setup #2384

Ebaneck opened this issue Apr 7, 2020 · 0 comments
Labels
kind:debt Technical debt topic:authentication Anything related to user authentication

Comments

@Ebaneck
Copy link
Contributor

Ebaneck commented Apr 7, 2020

Component:

'grafana', 'authentication', 'oidc'

Why this is needed:

If we enable the SSL verify parameter during Dex-Grafana oauth setup, signin to Grafana service fails and we end up with the following Grafana error logs

2020-04-07T13:09:44.640502817Z stdout F t=2020-04-07T13:09:44+0000 lvl=eror msg=login.OAuthLogin(NewTransportWithCode) logger=context userId=0 orgId=0 uname= error="Post https://172.21.254.3:8443/oidc/token: x509: certificate signed by unknown authority"

For now, ssl verify has been turned off in #2378
Grafana generic oauth with Dex should work without setting ssl_skip_verify_insecure: true.

What should be done:

Implementation proposal (strongly recommended):

TBD

Test plan:
@Ebaneck Ebaneck added kind:debt Technical debt topic:authentication Anything related to user authentication labels Apr 7, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
kind:debt Technical debt topic:authentication Anything related to user authentication
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@Ebaneck