Michael Ruoss

icon company Cradle icon location Zurich, Switzerland

Results 47 comments of Michael Ruoss

Failed to create Azure authorizer in a specific agent pool in Azure Devops

I see a similar but probably related issue. I'm running a GitHub workflow using Azure Workload Identity to authenticate with Azure. The [Azure Login](https://github.com/marketplace/actions/azure-login) step succeeds earlier in the workflow....

ArgumentError in K8s.Client.Mint.ConnectionRegistry on TCP Connection

TLDR: Remove `insecure_skip_tls_verify: true` when connecting to this cluster. Okay, I have never seen this before and your script works like a charm over here. That being said, I think...

ArgumentError in K8s.Client.Mint.ConnectionRegistry on TCP Connection

Oooh I see. We pass `verify: verify_peer` by default. But we should only do that if it's actually an SSL endpoint.

Exception raised when running too many get requests

I have noticed this as well. I fully agree with @elliottneilclark's approach. We can refresh the token "automatically" in the GenServer some time before it expires. IMO it might also...

Option ```--allowed-group``` not working for oidc with jwt-access-token (groups are not retrieved from /userinfo endpoint)

@JoelSpeed Should this work if the machine token contains the correct claims? I'm calling `/oauth2/auth?allowed_groups=some-group` passing a JWT token which has `some-group` in the list of allowed groups. I get...

Option ```--allowed-group``` not working for oidc with jwt-access-token (groups are not retrieved from /userinfo endpoint)

Hi @tuunit Yes, the groups claim is setup correctly using `--oidc-groups-claim`. The same configuration actually works without problems for user tokens. It's just the machine tokens that - despite the...

Helm chart section to add custom resources to the chart like `extraDeploy` or `extraObjects`

I'd love to have this possibility in the helm cart, too!