Skip to content

Commit 5024dee

Browse files
devguyioopenshift-cherrypick-robot
devguyio
authored and
openshift-cherrypick-robot
committed
OCPBUGS-45300: Wire synced OIDC Auth CM to Console
Signed-off-by: Ahmed Abdalla <[email protected]>
1 parent b16bdfc commit 5024dee

File tree

3 files changed

+10
-11
lines changed

3 files changed

+10
-11
lines changed

pkg/console/operator/sync_v400.go

Lines changed: 10 additions & 9 deletions
Original file line numberDiff line numberDiff line change
@@ -95,16 +95,20 @@ func (co *consoleOperator) sync_v400(ctx context.Context, controllerContext fact
9595
}
9696

9797
var (
98-
authServerCAConfig *corev1.ConfigMap
99-
sessionSecret *corev1.Secret
98+
targetNamespaceAuthServerCA *corev1.ConfigMap
99+
sessionSecret *corev1.Secret
100100
)
101101
switch authnConfig.Spec.Type {
102102
case configv1.AuthenticationTypeOIDC:
103103
if len(authnConfig.Spec.OIDCProviders) > 0 {
104104
oidcProvider := authnConfig.Spec.OIDCProviders[0]
105-
authServerCAConfig, err = co.configNSConfigMapLister.ConfigMaps(api.OpenShiftConsoleNamespace).Get(oidcProvider.Issuer.CertificateAuthority.Name)
106-
if err != nil && !apierrors.IsNotFound(err) {
107-
return statusHandler.FlushAndReturn(err)
105+
certAuthorityName := oidcProvider.Issuer.CertificateAuthority.Name
106+
if certAuthorityName != "" {
107+
targetNamespaceAuthServerCA, err = co.targetNSConfigMapLister.ConfigMaps(api.OpenShiftConsoleNamespace).Get(certAuthorityName)
108+
statusHandler.AddConditions(status.HandleProgressingOrDegraded("OIDCProviderTrustedAuthorityConfigGet", "FailedGet", err))
109+
if err != nil {
110+
return statusHandler.FlushAndReturn(err)
111+
}
108112
}
109113
}
110114

@@ -120,7 +124,6 @@ func (co *consoleOperator) sync_v400(ctx context.Context, controllerContext fact
120124
set.Console,
121125
set.Infrastructure,
122126
set.OAuth,
123-
authServerCAConfig,
124127
authnConfig,
125128
consoleRoute,
126129
controllerContext.Recorder(),
@@ -181,7 +184,7 @@ func (co *consoleOperator) sync_v400(ctx context.Context, controllerContext fact
181184
cm,
182185
serviceCAConfigMap,
183186
oauthServingCertConfigMap,
184-
authServerCAConfig,
187+
targetNamespaceAuthServerCA,
185188
trustedCAConfigMap,
186189
clientSecret,
187190
sessionSecret,
@@ -338,7 +341,6 @@ func (co *consoleOperator) SyncConfigMap(
338341
consoleConfig *configv1.Console,
339342
infrastructureConfig *configv1.Infrastructure,
340343
oauthConfig *configv1.OAuth,
341-
authServerCAConfig *corev1.ConfigMap,
342344
authConfig *configv1.Authentication,
343345
activeConsoleRoute *routev1.Route,
344346
recorder events.Recorder,
@@ -405,7 +407,6 @@ func (co *consoleOperator) SyncConfigMap(
405407
operatorConfig,
406408
consoleConfig,
407409
authConfig,
408-
authServerCAConfig,
409410
managedConfig,
410411
monitoringSharedConfig,
411412
infrastructureConfig,

pkg/console/subresource/configmap/configmap.go

Lines changed: 0 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -37,7 +37,6 @@ func DefaultConfigMap(
3737
operatorConfig *operatorv1.Console,
3838
consoleConfig *configv1.Console,
3939
authConfig *configv1.Authentication,
40-
authServerCAConfig *corev1.ConfigMap,
4140
managedConfig *corev1.ConfigMap,
4241
monitoringSharedConfig *corev1.ConfigMap,
4342
infrastructureConfig *configv1.Infrastructure,

pkg/console/subresource/configmap/configmap_test.go

Lines changed: 0 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1060,7 +1060,6 @@ providers: {}
10601060
tt.args.operatorConfig,
10611061
tt.args.consoleConfig,
10621062
tt.args.authConfig,
1063-
tt.args.authServerCAConfig,
10641063
tt.args.managedConfig,
10651064
tt.args.monitoringSharedConfig,
10661065
tt.args.infrastructureConfig,

0 commit comments

Comments
 (0)