Machine identity secrets disappear before graceperiod of TTL has expired #2902
Comments
|
Please use. a version v0.82.1 or higher. This has been fixed and was an issue on image v0.82 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the bug
After creating a machine identity and client key/secret combination to use in a Gitlab pipeline, the client secret disappears within the next 24 hours.
Client secret was created with
TTL: 0 (to keep it forever, for development purposes)
Max number of uses: 0 (I assume, to disable the amount)
Also tested with
TTL: 1209600 ( 2 weeks in seconds format)
After a few successful tests on the same day, the next day the same tests failed due to invalid credentials. Further investigation showed that the secret disappeared again.
To Reproduce
Steps to reproduce the behavior:
Access Controlon Infisical WebUIMachine identitiesCreate identityin order to create a new machine identitymember+button to add a project with secrets assigned to itCreate Client Secretin order to create a new Client secretTTLto 0 in order to disable the expiryMax Number of Usesto 0 in order to allow infinite usage.Expected behavior
Client secret is successfully created
TTL and max usage properties are respected and the secret stays after 24 hours
Actual behavior
Client secret is successfully created
TTL and max usage are not respected, secret disappears within 24 hours, might be cleaned up through cleanup cronjob because it somehow got expired.
Platform you are having the issue on:
Version: v0.82.0-postgres
Additional context
#2393 seems to have the same issue, but got closed due to not reproducible after updating
I've joined the slack community and posted a question in the
#infisical-helpchannel where a similar issue was mentioned earlier, without a solution.https://infisical-users.slack.com/archives/C04BSBMQAQ7/p1734413432450629
The text was updated successfully, but these errors were encountered: