charts,salt,build,tests: Bump Dex chart to v0.8.2 #3765
Conversation
This comment was marked as spam.
This comment was marked as spam.
This comment was marked as outdated.
This comment was marked as outdated.
This comment was marked as outdated.
This comment was marked as outdated.
charts/dex/templates/ingress.yaml
Outdated
| {{- if .Values.https.enabled -}} | ||
| {{- $svcPort = .Values.service.ports.https.port -}} | ||
| {{- end }} |
There was a problem hiding this comment.
It's sad but since this ticket is not done upstream dexidp/helm-charts#15
We need to restore this "manual patch"
There was a problem hiding this comment.
Good catch! Btw, we should likely consider a more predictable way for applying these patches, maybe something similar to what they do in https://github.com/scality/Zenko
This comment was marked as outdated.
This comment was marked as outdated.
This comment was marked as outdated.
This comment was marked as outdated.
JBWatenbergScality
force-pushed
the
improvement/bump-dex
branch
from
31fe870
to
a972f68
Compare
This comment was marked as outdated.
This comment was marked as outdated.
This comment was marked as outdated.
This comment was marked as outdated.
There was a problem hiding this comment.
Actually, looks like this change isn't working, I see the tests fail with 502 when attempting to reach Dex (yes, this info is lost in 30k+ lines of traceback....... 😮💨). I'll try to run it in debug and investigate. Also, I'll rebase your branch on the latest dev, because of #3781
This comment was marked as outdated.
This comment was marked as outdated.
gdemonet
force-pushed
the
improvement/bump-dex
branch
from
a972f68
to
3d89c6e
Compare
gdemonet
force-pushed
the
improvement/bump-dex
branch
from
3d89c6e
to
be97530
Compare
gdemonet
force-pushed
the
improvement/bump-dex
branch
from
a6cef63
to
5415aa7
Compare
gdemonet
force-pushed
the
improvement/bump-dex
branch
from
5415aa7
to
3ba5837
Compare
|
Now tests are failing with the latest version of Dex, we can see in its logs: Dex is working fine with browser access though, so this really has to do with our queries from the test runner. Investigating... Edit: I thought this came from our way of encoding query parameters, but it actually came from the login URL we extract from the HTML response sent by Dex when we "navigate" to the "login page". The fix in 6cca5bf should be sufficient. |
This comment was marked as outdated.
This comment was marked as outdated.
This comment was marked as resolved.
This comment was marked as resolved.
``` rm -rf charts/dex helm repo add dex https://charts.dexidp.io helm repo update helm fetch -d charts --untar dex/dex ``` Render chart to salt state using ``` ./charts/render.py dex charts/dex.yaml charts/dex \ --namespace metalk8s-auth \ --service-config dex metalk8s-dex-config \ metalk8s/addons/dex/config/dex.yaml.j2 metalk8s-auth \ > salt/metalk8s/addons/dex/deployed/chart.sls ```
…clusterrolebinding, dex role and roleBinding on post downgrade
This bumps the base image from alpine:3.15.1 to 3.16.0, which gets rid of the latest zlib CVE (https://nvd.nist.gov/vuln/detail/CVE-2018-25032). See dexidp/dex@v2.31.1...v2.31.2
This URL was extracted from the generated HTML returned by Dex, however it contains a semicolon, which is not accepted by the latest Go http library, used by Dex. So our test was broken, since the POST request was rejected with a 400 status.
gdemonet
force-pushed
the
improvement/bump-dex
branch
from
6cca5bf
to
8562abb
Compare
Waiting for approvalThe following approvals are needed before I can proceed with the merge:
Peer approvals must include at least 1 approval from the following list:
|
|
/approve |
Waiting for approvalThe following approvals are needed before I can proceed with the merge:
Peer approvals must include at least 1 approval from the following list:
The following options are set: approve |
In the queueThe changeset has received all authorizations and has been added to the The changeset will be merged in:
The following branches will NOT be impacted:
There is no action required on your side. You will be notified here once IMPORTANT Please do not attempt to modify this pull request.
If you need this pull request to be removed from the queue, please contact a The following options are set: approve |
|
I have successfully merged the changeset of this pull request
The following branches have NOT changed:
Please check the status of the associated issue None. Goodbye jbwatenbergscality. |
Render chart to salt state using
Component:
Context:
Summary:
Acceptance criteria:
Closes: #ISSUE_NUMBER