Uploaded image for project: 'Red Hat Process Automation Manager'
  1. Red Hat Process Automation Manager
  2. RHPAM-3460

LDAP login module flag for Kie Server is not set in Operator

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Major Major
    • 7.10.1.GA
    • 7.10.0.GA
    • Cloud
    • None

    • OpenShift 4.7
      BA Operator 7.10.0 CR2

    • False
    • False
    • CR2
    • CR1
    • Undefined
    • Workaround Exists
    • Hide

      For other objects you can set login module as env. variable.
      When creating KieApp yaml file, add to the env variable with name `AUTH_LDAP_LOGIN_MODULE` and with value `optional`

      e.g.

      ...
    servers:       - name: myapp-kieserver
        env:           - name: AUTH_LDAP_LOGIN_MODULE
            value: optional
          - ...
...
      Show
      For other objects you can set login module as env. variable. When creating KieApp yaml file, add to the env variable with name `AUTH_LDAP_LOGIN_MODULE` and with value `optional` e.g. ... servers: - name: myapp-kieserver env: - name: AUTH_LDAP_LOGIN_MODULE value: optional - ... ...
    • Hide
      1. Create new project and prepare LDAP
      2. Start BA Operator
      3. Create KieApp with configuration for LDAP e.g. kieapp-ldap.yaml
      4. Check env. variables for all objects, there should be set env. variable AUTH_LDAP_LOGIN_MODULE to `optional`
      5. you can also check standalone-openshift.xml files in pods, there should be login module set as optional ` <login-module code="LdapExtended" flag="optional">`
      Show
      Create new project and prepare LDAP Start BA Operator Create KieApp with configuration for LDAP e.g. kieapp-ldap.yaml Check env. variables for all objects, there should be set env. variable AUTH_LDAP_LOGIN_MODULE to `optional` you can also check standalone-openshift.xml files in pods, there should be login module set as optional ` <login-module code="LdapExtended" flag="optional">`
    • ---
    • ---

      When is in KieApp set LDAP login module to optional, it's expected that this value will be set to all Deployment Config objects using LDAP. Right now is this flag only configured for Console object (Business Central). In templates is login module configured to all deployments.

      In Operator PR for KIECLOUD-480 was added configuration of env variable for ldap login module only for BC.

        1. kieapp-ldap.yaml
          3 kB

            rhn-support-mmagnani Mauricio Magnani
            jakubschwan Jakub Schwan
            Karel Suta Karel Suta
            Karel Suta Karel Suta
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Created:
              Updated:
              Resolved: