Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Bug]: wrong oidc provisioner config prevents startup, can't remove provisioner #1757

Open
PeterGrace opened this issue Mar 11, 2024 · 0 comments
Open

[Bug]: wrong oidc provisioner config prevents startup, can't remove provisioner #1757

PeterGrace opened this issue Mar 11, 2024 · 0 comments
Assignees
@maraino
Labels
bug needs triage Waiting for discussion / prioritization by team

Comments

@PeterGrace
Copy link

Steps to Reproduce

Your Environment

  • OS - Docker container
  • step-ca Version - 0.25.2

Expected Behavior

I'd like to be able to start step-ca so that I can remove or repair the faulty provisioner config

Actual Behavior

step-ca errors on start, no way to change the provisioner config

Additional Context

I attempted to remediate by turning off remoteAdmin which allows step-ca to start, but it also appears to not read the database, so the provisioner list is [] when remoteAdmin is false, leaving me no ability to delete or edit the faulty provisioner.

Contributing

Vote on this issue by adding a 👍 reaction.
To contribute a fix for this issue, leave a comment (and link to your pull request, if you've opened one already).
@PeterGrace PeterGrace added bug needs triage Waiting for discussion / prioritization by team labels Mar 11, 2024
maraino added a commit that referenced this issue Mar 13, 2024
@maraino
Do not fail if a provisioner cannot be initialized
976bf0c 
This commit will mark a provisioner as disabled if it fails to
initialize. The provisioner will be visible, but authorizing a token
with a disabled provisioner will always fail.

Fixes: #589, #1757
@maraino maraino mentioned this issue Mar 13, 2024
Draft
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@maraino maraino

Labels
bug needs triage Waiting for discussion / prioritization by team
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@maraino @PeterGrace