c7n跳转 到gitlab 报错 OAuth Error

Choerodon Installation management
#1

  • Choerodon平台版本: 0.18.0

  • 遇到问题的执行步骤:
    分布安装的c7n 。
    在集成gitlab的Oauth认证时,输入gitlab的域名可以跳转到猪齿鱼的api认证,但是用管理员及其他用户认证时报下面错:
    OAuth Error

    error=“invalid_client”, error_description=“Bad client credentials”

  • 文档地址:

  • 环境信息(如:节点信息):

  • 报错日志:

  • 原因分析:

    提出您分析问题的过程,以便我们能更准确的找到问题所在

  • 疑问:

    提出您对于遇到和解决该问题时的疑问

#2 
mysql> select * from oauth_client where name='gitlab';
+----+--------+-----------------+--------------+--------+---------+-----------------------------------------------------------------------+----------------------------------+-----------------------+------------------------+------------------------+--------------+-----------------------+------------+---------------------+-----------------+---------------------+
| ID | NAME   | ORGANIZATION_ID | RESOURCE_IDS | SECRET | SCOPE   | AUTHORIZED_GRANT_TYPES                                                | WEB_SERVER_REDIRECT_URI          | ACCESS_TOKEN_VALIDITY | REFRESH_TOKEN_VALIDITY | ADDITIONAL_INFORMATION | AUTO_APPROVE | OBJECT_VERSION_NUMBER | CREATED_BY | CREATION_DATE       | LAST_UPDATED_BY | LAST_UPDATE_DATE    |
+----+--------+-----------------+--------------+--------+---------+-----------------------------------------------------------------------+----------------------------------+-----------------------+------------------------+------------------------+--------------+-----------------------+------------+---------------------+-----------------+---------------------+
|  7 | gitlab |               1 | default      | secret | default | password,implicit,client_credentials,authorization_code,refresh_token | http://c7nd01-gitlab.jnpc.com.cn |                  3600 |                   3600 | {}                     | default      |                     1 |          0 | 2019-08-29 08:54:19 |               0 | 2019-08-29 08:54:19 |
+----+--------+-----------------+--------------+--------+---------+-----------------------------------------------------------------------+----------------------------------+-----------------------+------------------------+------------------------+--------------+-----------------------+------------+---------------------+-----------------+---------------------+
1 row in set (0.00 sec)




[root@sv-c7ndev01 ~]# kubectl get po -n c7n-system   | grep git | grep -v Comp
gitlab-6d55c48449-splgs                     1/1       Running     0          15h
gitlab-postgresql-postgresql-0              1/1       Running     0          17h
gitlab-redis-ffbc5cbbd-qb6dn                1/1       Running     0          17h
gitlab-service-8785bb5b8-dhhks              1/1       Running     0          17h
#3

你好,文档上有个错误,谢谢反馈

更新gitlab配置命令修改为如下:

helm upgrade gitlab c7n/gitlab \
    -f <(helm get values gitlab) \
    --set env.config.CHOERODON_OMNIAUTH_ENABLED=true \
    --set env.config.OMNIAUTH_AUTO_SIGN_IN_WITH_PROVIDER=oauth2_generic \
    --set env.config.OMNIAUTH_BLOCK_AUTO_CREATED_USERS=false \
    --set env.config.CHOERODON_API_URL=http://api.example.choerodon.io \
    --set env.config.CHOERODON_CLIENT_ID=gitlab \
    --set env.config.CHOERODON_CLIENT_SECRET=secret \
    --version 0.5.0 \
    --namespace c7n-system
#4

谢谢。