Skip to content

Ensure that we generate a jwt_secret before launching api server processes #47739

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
ashb merged 1 commit into from
Mar 13, 2025
Merged

Ensure that we generate a jwt_secret before launching api server processes #47739

ashb merged 1 commit into from
Mar 13, 2025

Conversation

@ashb
Copy link
Member

@ashb ashb commented Mar 13, 2025

Otherwise each individual process will generate its own which results in n
different secret keys in use, and leads to random 403 errors.

^ Add meaningful description above
Read the Pull Request Guidelines for more information.
In case of fundamental code changes, an Airflow Improvement Proposal (AIP) is needed.
In case of a new dependency, check compliance with the ASF 3rd Party License Policy.
In case of backwards incompatible changes please leave a note in a newsfragment file, named {pr_number}.significant.rst or {issue_number}.significant.rst, in newsfragments.

@ashb
Ensure that we generate a jwt_secret before launching api servers pro…
1a64c86 
…cesses

Otherwise each individual process will generate its own which results in _n_
different secret keys in use, and leads to random 403 errors.
@ashb ashb changed the title Ensure that we generate a jwt_secret before launching api servers processes Ensure that we generate a jwt_secret before launching api server processes Mar 13, 2025
@ashb ashb mentioned this pull request Mar 13, 2025
Merged
7 tasks
potiuk
potiuk approved these changes Mar 13, 2025
View reviewed changes
Copy link
Member

@potiuk potiuk left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

nice!

@ashb ashb merged commit 4d279e7 into apache:main Mar 13, 2025
45 checks passed
@ashb ashb deleted the generate-signing-key-in-parent branch March 13, 2025 16:40
nailo2c pushed a commit to nailo2c/airflow that referenced this pull request Apr 4, 2025
@ashb @nailo2c
Ensure that we generate a jwt_secret before launching api servers pro…
fd61f00 
…cesses (apache#47739)

Otherwise each individual process will generate its own which results in _n_
different secret keys in use, and leads to random 403 errors.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@potiuk potiuk potiuk approved these changes

@bugraoz93 bugraoz93 bugraoz93 approved these changes

@pierrejeambrun pierrejeambrun pierrejeambrun approved these changes

@vincbeck vincbeck vincbeck approved these changes

Assignees

No one assigned

Labels

area:CLI

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@ashb @potiuk @bugraoz93 @pierrejeambrun @vincbeck