SDN-4773: Add support for Azure Managed Service Identity authentication by bryan-cox · Pull Request #151 · openshift/cloud-network-config-controller

bryan-cox · 2024-08-05T20:28:21Z

This PR:

Adds support for Azure Managed Service Identity authentication
Enables Azure MSI override for ARO HCP

openshift-ci-robot · 2024-08-05T20:28:24Z

@bryan-cox: This pull request references SDN-4773 which is a valid jira issue.

Warning: The referenced jira issue has an invalid target version for the target branch this PR targets: expected the story to target the "4.17.0" version, but no target version was set.

Details

In response to this:

This PR:

Adds support for Azure Managed Service Identity authentication

Enables Azure MSI override for ARO HCP

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

kyrtapz · 2024-08-06T09:55:59Z

There will need to be a CNO PR setting the AZURE_MSI_AUTHENTICATION env on the CNCC deployment.

Signed-off-by: Patryk Diak <pdiak@redhat.com>

bryan-cox · 2024-08-06T21:58:28Z

/test e2e-azure-ovn

bryan-cox · 2024-08-07T14:50:05Z

There will need to be a CNO PR setting the AZURE_MSI_AUTHENTICATION env on the CNCC deployment.

@kyrtapz It would just be this right? - openshift/cluster-network-operator#2465

For ARO HCP, we be able to override the authentication type to be MSI. For more information please see openshift/enhancements#1659.

kyrtapz · 2024-08-07T16:27:18Z

/lgtm

openshift-ci · 2024-08-07T16:28:20Z

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: bryan-cox, kyrtapz

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details

Needs approval from an approver in each of these files:

~~OWNERS~~ [kyrtapz]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

kyrtapz · 2024-08-07T16:53:49Z

/test e2e-azure-ovn

bryan-cox · 2024-08-07T21:45:33Z

/retest

openshift-ci-robot · 2024-08-07T22:51:49Z

/retest-required

Remaining retests: 0 against base HEAD fc90bb2 and 2 for PR HEAD 7c0636c in total

bryan-cox · 2024-08-08T00:50:50Z

/test e2e-gcp-ovn

bryan-cox · 2024-08-08T01:14:47Z

/retest-required

bryan-cox · 2024-08-08T01:39:42Z

/retest-required

kyrtapz · 2024-08-08T07:55:55Z

/retest-required

kyrtapz · 2024-08-08T08:10:11Z

e2e-gcp-ovn is failing on image build.
This change is specific to azure and does not affect gcp.
/override e2e-gcp-ovn

openshift-ci · 2024-08-08T08:11:35Z

@kyrtapz: /override requires failed status contexts, check run or a prowjob name to operate on.
The following unknown contexts/checkruns were given:

e2e-gcp-ovn

Only the following failed contexts/checkruns were expected:

ci/prow/e2e-aws-ovn
ci/prow/e2e-aws-ovn-serial
ci/prow/e2e-azure-ovn
ci/prow/e2e-gcp-ovn
ci/prow/e2e-openstack-ovn-serial-e2e-only
ci/prow/images
ci/prow/security
ci/prow/unit
pull-ci-openshift-cloud-network-config-controller-master-e2e-aws-ovn
pull-ci-openshift-cloud-network-config-controller-master-e2e-aws-ovn-serial
pull-ci-openshift-cloud-network-config-controller-master-e2e-azure-ovn
pull-ci-openshift-cloud-network-config-controller-master-e2e-gcp-ovn
pull-ci-openshift-cloud-network-config-controller-master-e2e-openstack-ovn-serial-e2e-only
pull-ci-openshift-cloud-network-config-controller-master-images
pull-ci-openshift-cloud-network-config-controller-master-security
pull-ci-openshift-cloud-network-config-controller-master-unit
tide

If you are trying to override a checkrun that has a space in it, you must put a double quote on the context.

Details

In response to this:

e2e-gcp-ovn is failing on image build.
This change is specific to azure and does not affect gcp.
/override e2e-gcp-ovn

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

kyrtapz · 2024-08-08T08:15:41Z

/override ci/prow/e2e-gcp-ovn

openshift-ci · 2024-08-08T08:15:58Z

@kyrtapz: Overrode contexts on behalf of kyrtapz: ci/prow/e2e-gcp-ovn

Details

In response to this:

/override ci/prow/e2e-gcp-ovn

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

openshift-ci · 2024-08-08T08:15:59Z

@bryan-cox: The following test failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
ci/prow/security	`7c0636c`	link	false	`/test security`

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

openshift-bot · 2024-08-08T13:12:38Z

[ART PR BUILD NOTIFIER]

Distgit: ose-cloud-network-config-controller
This PR has been included in build ose-cloud-network-config-controller-container-v4.18.0-202408081219.p0.g779b346.assembly.stream.el9.
All builds following this will include this PR.

openshift-ci-robot added the jira/valid-reference Indicates that this PR references a valid Jira ticket of any type. label Aug 5, 2024

openshift-ci Bot requested review from danwinship and kyrtapz August 5, 2024 20:28

kyrtapz reviewed Aug 6, 2024

View reviewed changes

Comment thread pkg/cloudprovider/azure.go

kyrtapz reviewed Aug 6, 2024

View reviewed changes

Comment thread pkg/cloudprovider/azure.go Outdated

kyrtapz reviewed Aug 6, 2024

View reviewed changes

Comment thread pkg/cloudprovider/azure.go

Add support for Azure Managed Service Identity authentication

499ae45

Signed-off-by: Patryk Diak <pdiak@redhat.com>

bryan-cox force-pushed the SDN-4773 branch from 080b6ea to 562331c Compare August 6, 2024 17:43

Enable Azure MSI override for ARO HCP

7c0636c

For ARO HCP, we be able to override the authentication type to be MSI. For more information please see openshift/enhancements#1659.

bryan-cox force-pushed the SDN-4773 branch from 562331c to 7c0636c Compare August 7, 2024 15:28

openshift-ci Bot assigned kyrtapz Aug 7, 2024

openshift-ci Bot added the lgtm Indicates that a PR is ready to be merged. label Aug 7, 2024

openshift-ci Bot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Aug 7, 2024

kyrtapz mentioned this pull request Aug 8, 2024

SDN-4773: Add support for Azure Managed Service Identity authentication #149

Closed

openshift-merge-bot Bot merged commit 779b346 into openshift:master Aug 8, 2024

Conversation

bryan-cox commented Aug 5, 2024

Uh oh!

openshift-ci-robot commented Aug 5, 2024 • edited by openshift-ci Bot Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

kyrtapz commented Aug 6, 2024

Uh oh!

bryan-cox commented Aug 6, 2024

Uh oh!

bryan-cox commented Aug 7, 2024

Uh oh!

kyrtapz commented Aug 7, 2024

Uh oh!

openshift-ci Bot commented Aug 7, 2024

Uh oh!

kyrtapz commented Aug 7, 2024

Uh oh!

bryan-cox commented Aug 7, 2024

Uh oh!

openshift-ci-robot commented Aug 7, 2024

Uh oh!

bryan-cox commented Aug 8, 2024

Uh oh!

bryan-cox commented Aug 8, 2024

Uh oh!

bryan-cox commented Aug 8, 2024

Uh oh!

kyrtapz commented Aug 8, 2024

Uh oh!

kyrtapz commented Aug 8, 2024

Uh oh!

openshift-ci Bot commented Aug 8, 2024

Uh oh!

kyrtapz commented Aug 8, 2024

Uh oh!

openshift-ci Bot commented Aug 8, 2024

Uh oh!

openshift-ci Bot commented Aug 8, 2024

Uh oh!

openshift-bot commented Aug 8, 2024

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants

openshift-ci-robot commented Aug 5, 2024 •

edited by openshift-ci Bot

Loading