Why does my encoded cert get rejected?

Problem Description: When attempting to open the identity broker, you get an error "We're Sorry... Invalid parameter: redirect_url".  Unable to enter the identity broker interface.

Answer:

When installing containerized AtScale for the first time, following the product documentation here, the encoded value for tlsCrt (that gets included in the override file) must include the dashes before BEGIN and after END lines. 

Here's an example:

-----BEGIN RSA PUBLIC KEY-----
MIIBigKCAYEAq3DnhgYgLVJknvDA3clATonPtjI7yauqD4/ZuqgZn4KzzzkQ4BzJ
ar4jRygpzbghlFn0Luk1mdVKzPUgbj0VkbRlHyYfcahbgOHixOOnXkKXrtZW7yWG
jXPqy/ZJ/+...
-----END RSA PUBLIC KEY-----

Encode the entire block (everything between the blue brackets below), then paste the encoded result between the " " per the install documentation.

[-----BEGIN RSA PUBLIC KEY-----
MIIBigKCAYEAq3DnhgYgLVJknvDA3clATozPtjI7yauqD4/ZuqgZn4KzzzkQ4BzJ
ar4jRygpzbghlFn0Luk1mdVKzPUgYj0VkbRlHyYfcahbgOHixOOnXkKXrtZW7yWG
jXPqy/ZJ/+...
-----END RSA PUBLIC KEY-----]

Here's an excerpt from the docs:

atscale:
# Set the certificate for TLS deployment.
# For deployment, include the certificate and key in base64 format.
tls:
# If you have a secret which you've created manually, define it here.
# !Important: Defining existingSecret will override the tlsCrt and tlsKey
existingSecret: ""
tlsCrt: ""
tlsKey: ""

Was this article helpful?

0 out of 0 found this helpful