New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Retry the admin token acquisition in DevServices for Keycloak #28294
Retry the admin token acquisition in DevServices for Keycloak #28294
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I agree it's worth a try!
@sberyozkin let's not merge it right away. I will orchestrate a few CI runs to ensure it's not failing too often as a first check. |
This comment has been minimized.
This comment has been minimized.
f07aba6
to
10d0dd5
Compare
Thanks @gsmet, I'll merge then once the build completes |
@sberyozkin let me run it a few more times, please. |
@gsmet Sure, sounds good |
This comment has been minimized.
This comment has been minimized.
10d0dd5
to
f121147
Compare
Ok I ran it three times. Let’s try to merge and see how it goes. |
Hi @gsmet, it is the only try I'd like to make to address both
oidc-client-reactive
and (re-enabled)oidc-token-propagation-reactive
test failures - both fail unexpectedly when an attempt it made to acquire an admin token using theadmin:admin
default admin credentials provided to Keycloak at startup, with the error message that these credentials are invalid.The only thing I can think of is that the admin realm/users data have not been initialized yet in Keycloak. Keycloak 19.0.2 (Quarkus based) has done some significant refactorings around the way the various data are handled, so it might explain why. Other tests which use legacy Keycloak 19.0.2 images are not affected with such an error...
So I've just moved the code dedicated to acquiring the admin token in its own function, and added a retry of up to 10 secs to the code which uses a password grant to get such tokens.
Will disable both of these tests if it does not help