Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bug: Creation of storage account fails permanently if KeyVault inaccessible #4546

Open
theunrepentantgeek opened this issue Jan 28, 2025 · 1 comment
Open

Bug: Creation of storage account fails permanently if KeyVault inaccessible #4546

theunrepentantgeek opened this issue Jan 28, 2025 · 1 comment
Labels
bug 🪲 Something isn't working

Comments

@theunrepentantgeek
Copy link
Member

Describe the bug

As described in #4459

When attempting to create a storage account with customer managed key encryption, if the user-assigned managed identity of the storage account does not have RBAC to the Key Vault, the operator/Azure correctly errors out for that resource saying that there is a key vault authentication failure.

Expected behavior

This shouldn't be a permanent error - ASO should continue reconciling the storage account, with that reconciliation succeeding after the RBAC for the storage accounts user assigned managed identity gets updated.

Additional context

See the full discussion in #4459
@theunrepentantgeek theunrepentantgeek added the bug 🪲 Something isn't working label Jan 28, 2025
@theunrepentantgeek theunrepentantgeek added this to the v2.13.0 milestone Jan 28, 2025
@matthchr
Copy link
Member

matthchr commented Feb 3, 2025

We need to see if we can recreate this issue and determine what error(s) we're getting here, so that we can ensure that ASO retries correctly on it.

@theunrepentantgeek theunrepentantgeek moved this from Backlog to Up Next in Azure Service Operator Roadmap Feb 10, 2025
@theunrepentantgeek theunrepentantgeek removed this from the v2.13.0 milestone Feb 10, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug 🪲 Something isn't working
Projects
Azure Service Operator Roadmap
Status: Up Next
Milestone
No milestone
Development

No branches or pull requests
2 participants
@theunrepentantgeek @matthchr