Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Give better error when using default service acct #842

Merged
merged 2 commits into from
Nov 10, 2021
Merged

Give better error when using default service acct #842

merged 2 commits into from
Nov 10, 2021

Conversation

lkysow
Copy link
Member

@lkysow lkysow commented Nov 4, 2021
edited
Loading

If consul login fails when the service account name is default then
give an explicit warning that the reason it failed is because in
default installations that is not a support service account name.

We can't fail during injection because we support modifying the binding
rule such that default is a valid svc account name.

Fixes #574

How I've tested this PR:

  • built container and looked at logs

Checklist:

  • CHANGELOG entry added

    HashiCorp engineers only, community PRs should not add a changelog entry.
    Entries should use present tense (e.g. Add support for...)

@lkysow lkysow requested review from a team, ishustava and t-eckert and removed request for a team November 5, 2021 16:53
@lkysow lkysow marked this pull request as ready for review November 5, 2021 16:53
t-eckert
t-eckert approved these changes Nov 8, 2021
View reviewed changes
Copy link
Contributor

@t-eckert t-eckert left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Nice UX

@lkysow
Give better error when using default service acct
9a425c5 
If consul login fails when the service account name is `default` then
give an explicit warning that the reason it failed is because in
default installations that is not a support service account name.

We can't fail during injection because we support modifying the binding
rule such that `default` _is_ a valid svc account name.
@lkysow
Add changelog
b71595f
@lkysow lkysow merged commit 8a63540 into main Nov 10, 2021
@lkysow lkysow deleted the lkysow/service-account-err branch November 10, 2021 00:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ishustava ishustava ishustava approved these changes

@t-eckert t-eckert t-eckert approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Give better error when ACLs enabled and using the default service account name
3 participants
@lkysow @ishustava @t-eckert