Secrets will not populate and no useful error logs

[rchenzheng]

Your environment

Chart Version: connect-1.4.0

Helm Version: version.BuildInfo{Version:"v3.5.4", GitCommit:"1b5edb69df3d3a08df77c9902dc17af864ff05d1", GitTreeState:"dirty", GoVersion:"go1.16.3"}

Kubernetes Version: Server Version: version.Info{Major:"1", Minor:"20", GitVersion:"v1.20.2", GitCommit:"faecb196815e248d3ecfb03c680a4507229c2a56", GitTreeState:"clean", BuildDate:"2021-01-21T01:11:42Z", GoVersion:"go1.15.5", Compiler:"gc", Platform:"linux/amd64"}

What happened?

password connect does not create secrets although secret was created, the containers show no useful logs or errors

What did you expect to happen?

A kubernetes secrets should've been created automatically

Steps to reproduce

1. Install operator

helm repo add 1password https://1password.github.io/connect-helm-charts/ && \
helm upgrade -i connect 1password/connect --set-file connect.credentials=1password-credentials.json --set operator.token.value=$TOKEN

2. Create secret

   apiVersion: onepassword.com/v1
   kind: OnePasswordItem
   metadata:
   name: test
   spec:
   itemPath: "vaults/fi2nz7kvpcg4p2fcpizeftbava/items/agm66y3qdnd7djfahzfiwuv4cq"

Notes & Logs

secrets

NAME                            TYPE                                  DATA   AGE
default-token-v6dhh             kubernetes.io/service-account-token   3      56m
op-credentials                  Opaque                                1      46m
sh.helm.release.v1.connect.v1   helm.sh/release.v1                    1      46m
sh.helm.release.v1.connect.v2   helm.sh/release.v1                    1      44m
sh.helm.release.v1.connect.v3   helm.sh/release.v1                    1      25m
sh.helm.release.v1.connect.v4   helm.sh/release.v1                    1      24m
sh.helm.release.v1.connect.v5   helm.sh/release.v1                    1      17m

connect-api

{"log_message":"(I) starting 1Password Connect API ...","timestamp":"2021-07-05T20:06:28.5647019Z","level":3}
{"log_message":"(I) serving on :8080","timestamp":"2021-07-05T20:06:28.564763Z","level":3}
{"log_message":"(I) [discovery-local] starting discovery, advertising endpoint 34473 /meta/message","timestamp":"2021-07-05T20:06:28.564569Z","level":3}
{"log_message":"(I) GET /heartbeat","timestamp":"2021-07-05T20:06:42.0665801Z","level":3,"scope":{"request_id":"0108f9dc-d4b7-4e96-96e0-d750ac0b49e8"}}
{"log_message":"(I) GET /heartbeat completed (200: OK)","timestamp":"2021-07-05T20:06:42.0668241Z","level":3,"scope":{"request_id":"0108f9dc-d4b7-4e96-96e0-d750ac0b49e8"}}
...

connect-sync

{"log_message":"(W) configured to use HTTP with no TLS","timestamp":"2021-07-05T20:06:27.6574652Z","level":2}
{"log_message":"(I) [discovery-local] starting discovery, advertising endpoint 45279 /meta/message","timestamp":"2021-07-05T20:06:27.6575066Z","level":3}
{"log_message":"(I) no existing database found, will initialize at /home/opuser/.op/data/1password.sqlite","timestamp":"2021-07-05T20:06:27.6579724Z","level":3}
{"log_message":"(I) starting 1Password Connect Sync ...","timestamp":"2021-07-05T20:06:27.6584934Z","level":3}
{"log_message":"(I) serving on :8081","timestamp":"2021-07-05T20:06:27.6585384Z","level":3}
{"log_message":"(I) database initialization complete","timestamp":"2021-07-05T20:06:27.6671754Z","level":3}
{"log_message":"(I) ### syncer credentials bootstrap ### ","timestamp":"2021-07-05T20:06:27.6673713Z","level":3}
{"log_message":"(I) GET /health","timestamp":"2021-07-05T20:06:45.405312Z","level":3,"scope":{"request_id":"d2065c03-f0c6-41d2-9051-769df7cbc670"}}
{"log_message":"(I) GET /health completed (200: OK)","timestamp":"2021-07-05T20:06:45.4056794Z","level":3,"scope":{"request_id":"d2065c03-f0c6-41d2-9051-769df7cbc670"}}
{"log_message":"(I) GET /heartbeat","timestamp":"2021-07-05T20:06:55.2725209Z","level":3,"scope":{"request_id":"709dfbec-267f-4c22-9483-59f7c087d4e8"}}
...

[florisvdg]

Could you try with --set operator.create=true?

[rchenzheng]

Could you try with --set operator.create=true?

Thanks, looks like that did it. However, it'd be nice if it was documented or default to true

https://github.com/1Password/connect-helm-charts/tree/main/charts/connect https://support.1password.com/connect-deploy-kubernetes/#step-2-deploy-a-1password-connect-server