CNTRLPLANE-945: oidc/keycloak: make keycloak client use environment proxy for HTTP requests #30148
Conversation
…quests Signed-off-by: Bryce Palmer <[email protected]>
openshift-ci-robot
added
the
jira/valid-reference
openshift-ci
bot
added
the
do-not-merge/work-in-progress
|
@everettraven: This pull request references CNTRLPLANE-945 which is a valid jira issue. Warning: The referenced jira issue has an invalid target version for the target branch this PR targets: expected the story to target the "4.20.0" version, but no target version was set. DetailsIn response to this: Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository. |
everettraven
changed the title
openshift-ci
bot
removed
the
do-not-merge/work-in-progress
|
Tested this locally on a metal cluster and we were able to successfully configure keycloak through the keycloak route when the |
|
/lgtm |
|
https://prow.ci.openshift.org/view/gs/test-platform-results/logs/multi-pr-openshift-cluster-authentication-operator-778-openshift-origin-30148-e2e-metal-ovn-ipv4-external-oidc-configure-techpreview/1958596586057502720 is evidence that this change fixes the issue we were encountering in the metal jobs in openshift/release#68209 All the feature-gated tests that use this functionality passed against a baremetal cluster, meaning we were successfully able to hit the Keycloak instances and configure them. |
|
@everettraven: This pull request references CNTRLPLANE-945 which is a valid jira issue. Warning: The referenced jira issue has an invalid target version for the target branch this PR targets: expected the story to target the "4.20.0" version, but no target version was set. DetailsIn response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository. |
|
/retest-required |
|
/approve |
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: everettraven, liouk, neisw The full list of commands accepted by this bot can be found here. The pull request process is described here DetailsNeeds approval from an approver in each of these files:
Approvers can indicate their approval by writing |
openshift-ci
bot
added
the
approved
|
/retest-required |
|
/test e2e-metal-ipi-ovn-ipv6 |
|
Job Failure Risk Analysis for sha: cf1354f
|
|
/retest-required |
1 similar comment
|
/retest-required |
|
This suite is currently only run in tech preview jobs, and shouldn't negatively impact CI/CR signal or the default product. /label acknowledge-critical-fixes-only |
openshift-ci
bot
added
the
acknowledge-critical-fixes-only
|
@everettraven: all tests passed! Full PR test history. Your PR dashboard. DetailsInstructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here. |
openshift-merge-bot
bot
merged commit dddc7df
into
openshift:main
4 participants
We encountered an issue in openshift/release#68209 where requests to configure the Keycloak instance deployed for the OIDC tests failed to resolve the hostname of route for the Keycloak instance.
This appeared to be because all requests to routes on a baremetal cluster must go through a proxy. This PR updates the HTTP client we use for interacting with Keycloak instances to respect any proxies configured from the typical
HTTP_PROXYHTTPS_PROXYandNO_PROXYenvironment variables.