What is the issue?
Tailscale Kubernetes Operator v1.98.3 fails to utilize workload identity federation authentication, showing the next error on any API request:
failed creating Recorder: error creating secrets: Post "https://controlplane.tailscale.com/api/v2/tailnet/-/keys": fetched ID token is invalid: invalid JWT format: expected 3 parts separated by '.', got 1
Steps to reproduce
Deploy as described in https://tailscale.com/docs/features/kubernetes-operator#installation-with-workload-identity-federation, try to create any resources with the operator.
Are there any recent changes that introduced the issue?
I believe it is due to migration of Kubernetes Operator to tailscale-client-go-v2 in #19010.
OS
Linux
OS version
Amazon Linux 2023
Tailscale version
1.98.3
Other software
JWT token is generated by AWS EKS and appears to be correct. It worked fine with Tailscale Kubernetes Operator v1.92.3.
Bug report
No response
What is the issue?
Tailscale Kubernetes Operator v1.98.3 fails to utilize workload identity federation authentication, showing the next error on any API request:
Steps to reproduce
Deploy as described in https://tailscale.com/docs/features/kubernetes-operator#installation-with-workload-identity-federation, try to create any resources with the operator.
Are there any recent changes that introduced the issue?
I believe it is due to migration of Kubernetes Operator to tailscale-client-go-v2 in #19010.
OS
Linux
OS version
Amazon Linux 2023
Tailscale version
1.98.3
Other software
JWT token is generated by AWS EKS and appears to be correct. It worked fine with Tailscale Kubernetes Operator v1.92.3.
Bug report
No response