Open YurkoWasHere opened 1 year ago
From the second error, it looks like the signing domain might be missing. It is set here: https://github.com/webrecorder/browsertrix-cloud/blob/main/chart/templates/signer.yaml#L14
with Ansible, this is set from values: https://github.com/webrecorder/browsertrix-cloud/blob/main/ansible/group_vars/do/do-values.template.yaml#L50 and https://github.com/webrecorder/browsertrix-cloud/blob/main/ansible/playbooks/do_setup.yml#L191 Can you double check that these are all set correctly?
grep of that variable only exists in do templates not in micro k8
Tried adding this but it failed same way
-e full_signing_domain="org2.authsign.stg.domain.org" -e signing_subdomain="org2.authsign.stg.domain.org" -e signing_authtoken=999999
Found the issue
Default value breaks LE. Removing it breaks AuthSign
host: "second-host.{{ domain }}"
You're right, the microk8s did not have the proper authsign setup! Can you the change in: https://github.com/webrecorder/browsertrix-cloud/pull/776 with:
-e signing_domain="org2.authsign.stg.domain.org" -e signing_subdomain="org2.authsign.stg.domain.org" -e signing_authtoken=999999
There are additional variables that are missing
cert_email
and enable_signing
but adding these deploys fine.
This kind of stuff could be cleaned up using a defaults file
Authsigner on k8 is in a crash loop: