Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

elasticache: cannot create users with passwords #151

Closed
matteo-magni opened this issue Nov 16, 2022 · 4 comments
Closed

elasticache: cannot create users with passwords #151

matteo-magni opened this issue Nov 16, 2022 · 4 comments
Labels
bug Something isn't working is:blocked is:triaged Indicates that an issue has been reviewed.

Comments

@matteo-magni
Copy link

matteo-magni commented Nov 16, 2022
edited
Loading

What happened?

The latest provider-aws release (v0.20.0) cannot create Elasticache users with passwords set via .spec.forProvider.passwordsSecretRef.
Apparently such field is not translated into its terraform equivalent here.

How can we reproduce it?

  1. install and configure provider-aws
  2. create the secret 
    kubectl -n crossplane-system create secret generic user-passwords --from-literal pwd-1=mypass1 --from-literal pwd-2=mypass2
  3. apply this example from the git repo or copy it and adjust the AWS region if needed: 
    kubectl apply -f https://raw.githubusercontent.com/upbound/provider-aws/v0.20.0/examples/elasticache/user.yaml
  4. observe the object's status: 
    kubectl get users.elasticache.aws.upbound.io sample-user -o yaml
    The LastAsyncOperation condition reports 
    message: "apply failed: error creating ElastiCache User: InvalidParameterValue:
  Input Authentication type: null is not in the allowed list: [password,no-password-required,iam]\n\tstatus
  code: 400, request id: e98ac4d4-66e3-4ebb-839c-be68fdde2416: "
reason: ApplyFailure
status: "False"
type: LastAsyncOperation
    which is the same error the AWS CLI returns when trying to create a user with no --passwords nor --no-password-required 
    $ aws elasticache create-user --user-id sample-user --user-name sample-user --engine REDIS --access-string "on ~* +@all"

An error occurred (InvalidParameterValue) when calling the CreateUser operation: Input Authentication type: null is not in the allowed list: [password,no-password-required,iam]

What environment did it happen in?

  • Universal Crossplane Version: v1.10.1-up.1
  • Provider Version: v0.20.0
  • Cloud provider: AWS
  • Kubernetes distribution: EKS
  • Kubernetes version: v1.23.13-eks-fb459a0
@matteo-magni matteo-magni added the bug Something isn't working label Nov 16, 2022
@turkenf turkenf added is:triaged Indicates that an issue has been reviewed. and removed needs:triage labels Mar 28, 2023
@turkenf
Copy link
Collaborator

turkenf commented Mar 28, 2023

The issue reproduced.

@turkenf
Copy link
Collaborator

turkenf commented May 10, 2023

Blocked by: crossplane/upjet#202

@turkenf turkenf mentioned this issue May 12, 2023
Merged
1 task
@turkenf turkenf mentioned this issue Jul 6, 2023
Closed
@turkenf
Copy link
Collaborator

turkenf commented Feb 27, 2024

The relevant upstream issue has been fixed and closed, will test this issue after upgrading the https://github.com/crossplane/upjet

@turkenf
Copy link
Collaborator

turkenf commented Mar 7, 2024

This issue has been fixed with Provider versions 0.47.3 and 1.1.1. I am closing this now, feel free to reopen it if you encounter any issues.

@turkenf turkenf closed this as completed Mar 7, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working is:blocked is:triaged Indicates that an issue has been reviewed.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@jeanduplessis @matteo-magni @turkenf