Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Identity Provider Status stuck in CREATING #5123

Open
jas-nik opened this issue Sep 16, 2024 · 4 comments
Open

Identity Provider Status stuck in CREATING #5123

jas-nik opened this issue Sep 16, 2024 · 4 comments
Assignees
@jas-nik
Labels
help wanted Denotes an issue that needs help from a contributor. Must meet "help wanted" guidelines. kind/bug Categorizes issue or PR as related to a bug. priority/important-longterm Important over the long term, but may not be staffed and/or may need multiple releases to complete. triage/accepted Indicates an issue or PR is ready to be actively worked on.

Comments

@jas-nik
Copy link
Contributor

jas-nik commented Sep 16, 2024
edited
Loading

/kind bug

What steps did you take and what happened:
Provision AWS managed control plane with Identity provider config. We are currently using Azure Active Directory (AAD) as our Identity provider.

Checking the status in AWS console shows the Status as Active but AWS Managed Control plane status shows the status stuck in CREATING phase.

image

image

We use CAPA in combination with ArgoCD and due to Identity Provider Config status stuck in CREATING phase, we are unable to use this to check the status of ManagedControlPlane readiness

What did you expect to happen:
Identity Provider status in AWS Managed Control Plane status change to "Active/Provisioned/Created"

Anything else you would like to add:
[Miscellaneous information that will assist in solving the issue.]

Environment:

  • Cluster-api-provider-aws version: 2.6.1
  • Kubernetes version: (use kubectl version): 1.29
  • OS (e.g. from /etc/os-release): ubuntu
@k8s-ci-robot k8s-ci-robot added kind/bug Categorizes issue or PR as related to a bug. needs-priority needs-triage Indicates an issue or PR lacks a `triage/foo` label and requires one. labels Sep 16, 2024
@dlipovetsky
Copy link
Contributor

/triage accepted

/priority important-longterm

/help

@k8s-ci-robot
Copy link
Contributor

@dlipovetsky:
This request has been marked as needing help from a contributor.

Guidelines

Please ensure that the issue body includes answers to the following questions:

  • Why are we solving this issue?
  • To address this issue, are there any code changes? If there are code changes, what needs to be done in the code and what places can the assignee treat as reference points?
  • Does this issue have zero to low barrier of entry?
  • How can the assignee reach out to you for help?

For more details on the requirements of such an issue, please see here and ensure that they are met.

If this request no longer meets these requirements, the label can be removed
by commenting with the /remove-help command.

In response to this:

/triage accepted

/priority important-longterm

/help

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

@k8s-ci-robot k8s-ci-robot added triage/accepted Indicates an issue or PR is ready to be actively worked on. help wanted Denotes an issue that needs help from a contributor. Must meet "help wanted" guidelines. priority/important-longterm Important over the long term, but may not be staffed and/or may need multiple releases to complete. and removed needs-triage Indicates an issue or PR lacks a `triage/foo` label and requires one. needs-priority labels Sep 16, 2024
@jas-nik
Copy link
Contributor Author

jas-nik commented Sep 16, 2024

/assign @jas-nik

@adammw
Copy link

adammw commented Sep 17, 2024

Guessing this is related but in reverse for us - the CRD is marked as Ready before the identity provider is provisioned, and AFAICT there are no EKSControlPlaneUpdating Condition or events to know this occurs, and our workflow continues on after seeing the CRD ready and then gets an error due to the AssociateIdentityProviderConfig not being finished.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jas-nik jas-nik

Labels
help wanted Denotes an issue that needs help from a contributor. Must meet "help wanted" guidelines. kind/bug Categorizes issue or PR as related to a bug. priority/important-longterm Important over the long term, but may not be staffed and/or may need multiple releases to complete. triage/accepted Indicates an issue or PR is ready to be actively worked on.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@adammw @dlipovetsky @jas-nik @k8s-ci-robot