-
Notifications
You must be signed in to change notification settings - Fork 896
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Embedded Ansible doesn't clear authentications on destroy #16678
Comments
@jameswnl could this be related to the orchestrated destroy? |
Very likely. Do we support this use case? To delete the embedded? |
So this is interesting because it is something we should never do in production. The authentication records stored against the MiqDatabase row are not really dependents of the provider. They are there so that we can recreate the provider if it was removed. I don't really think this is a thing we should add. |
This is not the same, when I did How I hit this was: I had my dev setup set to use an external Ansible Tower as an embedded ansible. (I also have no opinion whatsoever on whether this should happen by default or not, it was a special case.) |
I'm fine with leaving this as something to document as developer specific workflow. I was concerned there was something else causing authentications to stick around. |
Assigning to @carbonin . |
The provider can't be removed through the UI in production, but if we remove these authentication records then we lose all ability to access the awx database and might as well delete all of the data there and start from scratch. It depends on what deleting the provider means from a higher level. I don't think the concept was really fleshed out as this was never supposed to happen. |
This issue has been automatically marked as stale because it has not been updated for at least 6 months. If you can still reproduce this issue on the current release or on Thank you for all your contributions! |
@himdel is this still a valid issue. If not can you close. |
Still very much true,
|
This issue has been automatically marked as stale because it has not been updated for at least 6 months. If you can still reproduce this issue on the current release or on Thank you for all your contributions! |
@himdel since we changed the implementation of Embedded Ansible in the Ivanchuk release, would you please re-test once again. |
None of those methods exist anymore. But, I'm currently seeing these authentication types:
None of So, I would guess that this is irrelevant to the new implementation but we still need a migration to remove the old authentications. @NickLaMuro WDYT?^ |
This is no longer an issue with the new ansible-runner based embedded ansible implementation. |
(created because of ManageIQ/guides#276 (comment) )
Running
ManageIQ::Providers::EmbeddedAnsible::Provider.first.destroy
(while having exactly 1 embedded ansible provider) does not delete all it's authentications.This needed to be done manually after:
Cc @jrafanie
The text was updated successfully, but these errors were encountered: