Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(server): Do not silently ignore sso secret creation error #4775

Merged
merged 1 commit into from
Dec 18, 2020
Merged

fix(server): Do not silently ignore sso secret creation error #4775

merged 1 commit into from
Dec 18, 2020

Conversation

alexec
Copy link
Contributor

@alexec alexec commented Dec 18, 2020
edited
Loading

Signed-off-by: Alex Collins [email protected]

Checklist:

@alexec alexec marked this pull request as ready for review December 18, 2020 18:53
sarabala1979
sarabala1979 reviewed Dec 18, 2020
View reviewed changes
server/auth/sso/sso.go
@@ -139,10 +140,13 @@ func newSso(
// if it fails, then the get will fail, and the pod restart
// it may fail due to race condition with another pod - which is fine,
// when it restart it'll get the new key
_, _ = secretsIf.Create(&apiv1.Secret{
_, err = secretsIf.Create(&apiv1.Secret{
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

RBAC should have 'create` permission. right?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

correct - that is already the case - this surfaces issue when users have their own custom RBAC

@alexec alexec merged commit 4ac436d into argoproj:master Dec 18, 2020
@alexec alexec deleted the fix-sso branch December 18, 2020 20:41
@simster7 simster7 mentioned this pull request Jan 4, 2021
Closed
21 tasks
simster7 pushed a commit that referenced this pull request Jan 4, 2021
@alexec @simster7
fix(server): Do not silently ignore sso secret creation error (#4775)
331aa4e 
Signed-off-by: Alex Collins <[email protected]>
@simster7
Copy link
Member

simster7 commented Jan 5, 2021

Fix for this is out on https://github.com/argoproj/argo/releases/tag/v2.12.3

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@sarabala1979 sarabala1979 sarabala1979 approved these changes

Assignees
No one assigned
Labels
area/sso-rbac
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
4 participants
@alexec @simster7 @sarabala1979 @agilgur5