Quay Bridge Operator's script called "webhook-create-signed-cert.sh" creates a certificate that is valid for only 30 days

Solution In Progress - Updated -

Issue

  • One can't start builds because the quay bridge operator generated SSL certificates expires every 30 days.
  • After 30 days OpenShift can not launch any new builds. Following errors are seen from any build that is whitelisted in the operator:
Error "failed calling webhook "quayintegration.redhatcop.redhat.io": Post "https://quay-bridge-operator.openshift-operators.svc:443/admissionwebhook?timeout=30s": x509: certificate has expired or is not yet valid: current time 2021-08-12T14:18:34Z is after 2021-08-11T22:44:28Z" for field "undefined".

Environment

  • Red Hat Quay
    • v3.5

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content