Hello, I'm trying to follow the docs for configuring ASM end-user authentication, however, encountering the error below while creating a UserAuthConfig (check the Status key):
Name: user-auth-config
Namespace: asm-user-auth
Labels: <none>
Annotations: internal.kpt.dev/upstream-identifier: security.anthos.io|UserAuthConfig|asm-user-auth|user-auth-config
API Version: security.anthos.io/v1beta1
Kind: UserAuthConfig
Metadata:
Creation Timestamp: 2024-04-08T14:12:54Z
Generation: 1
Resource Version: 3282165
UID: e9fd8aaf-40a0-4868-ad44-b5473562e06e
Spec:
Authentication:
Oidc:
Certificate Authority Data:
Groups Claim:
Issuer URI: https://accounts.google.com
Oauth Credentials Secret:
Name: oauth-secret
Namespace: asm-user-auth
Proxy:
Redirect URI Host: https://localhost:8443
Redirect URI Path: /_gcp_asm_authenticate
Scopes:
Output JWT Audience: test_audience
Status:
User Auth Service: One or more auth methods in generation 1 have failed to start: Unable to connect to 'https://kubernetes.default.svc/api/v1/namespaces/asm-user-auth/secrets/oauth-secret', encountered the following error: Couldn't resolve host name. Details: Could not resolve host: kubernetes.default.svc.
Events: <none>Moreover authservice also doesn't redirect to the OIDC login page. I'm assuming that a consequence of the above error?
Could someone please help me troubleshoot this?
Cluster version: v1.27.8-gke.1067004 (Autopilot)
ASM version: 1.17.8-asm.20 (Regular channel)
Hello, I'm trying to follow the docs for configuring ASM end-user authentication, however, encountering the error below while creating a
UserAuthConfig(check theStatuskey):Moreover
authservicealso doesn't redirect to the OIDC login page. I'm assuming that a consequence of the above error?Could someone please help me troubleshoot this?
Cluster version:
v1.27.8-gke.1067004(Autopilot)ASM version:
1.17.8-asm.20(Regular channel)