Join GitHub today
GitHub is home to over 40 million developers working together to host and review code, manage projects, and build software together.Sign up
Container Live Stream Authentication Issue #33129
Up until late last week the container live stream functionality has been working great on my 3 AKS clusters. I believe in the last week something has changed and is impacting the AAD authentication in the AKS Insights Blade for Containers leveraging container live stream. Whenever it tries to authenticate me, it just continuously spins, downloads an auth.html file, and never comes back.
I have updated my AAD client application based on the new documentation updates to have the following reply url for my client object: https://afd.hosting.portal.azure.net/monitoring/Content/iframe/infrainsights.app/web/base-libs/auth/auth.html
Any assistance would be greatly appreciated.
⚠ Do not edit this section. It is required for docs.microsoft.com ➟ GitHub issue linking.
@Kenneth-Abrams - The changes published yesterday for setting up AAD were to align with changes implemented by Azure AD to remove insecure use of wildcards in URIs. Because your issue is not related to an actual doc issue, I suggest you open a support case to have it properly reviewed and triaged by one of our engineers. #please-close
I have the same issue and it can be reproduced in any environment.
The URL specified in the article is incorrect, as per the article suggestion
Request Id: f2054eb4-441d-4370-8938-86438d0a2b00
After adding implicitly grant Access tokens and ID tokens and the URI specified in the article:
another error shows up:
Request Id: 6a20e43e-cf9d-4f49-a1cc-dfb662fc2f00
then it takes you to the URI and downloads auth.html
@vishiy Is it really fixed? I tried it out today and I got the error message that the reply url by the app does not match the reply url provided in the request.
Finally, with some debugging and changing the url to
Does the url has changed?
Same thing happened to me over the weekend, live streaming of the aks logs started failing auth with invalid reply url. Thanks @neumanndaniel, I was about to start debugging myself when I came across your response, updating / adding