OCPBUGS-61183: cluster in workload identity mode is not applied with the token-auth-…

[cajieh]

…azure annotation

[openshift-ci-robot]

@cajieh: This pull request references Jira Issue OCPBUGS-61183, which is invalid:

• expected the bug to target the "4.21.0" version, but no target version was set

Comment /jira refresh to re-evaluate validity if changes to the Jira bug are made, or edit the title of this pull request to link to a different bug.

The bug has been updated to refer to the pull request using the external bug tracker.

Details

In response to this:

…azure annotation

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[cajieh]

/jira refresh

[openshift-ci-robot]

@cajieh: This pull request references Jira Issue OCPBUGS-61183, which is valid. The bug has been moved to the POST state.

3 validation(s) were run on this bug

• bug is open, matching expected state (open)
• bug target version (4.21.0) matches configured target version for branch (4.21.0)
• bug is in the state ASSIGNED, which is one of the valid states (NEW, ASSIGNED, POST)

Requesting review from QA contact:
/cc @yapei

Details

In response to this:

/jira refresh

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[cajieh]

/retest

[cajieh]

Added these PF components to fix a margin issue, likely a regression from the recent Operator Hub changes. Although this was not part of the bug ticket.

[rhamilto]

A <Stack> with a single <StackItem> is a bit overkill to fix a margin issue. Simply adding a className="pf-v6-u-mb-md" to each <DismissableAlert> is a bit simpler.

[cajieh]

Actually, I used the PF class at first but later changed to Stack based on previous feedback that discouraged the use of classes, although that work was more complex than this. I will go with your opinion.

[cajieh]

The DismissableAlert was missing a className prop, so I added it to prevent the need for a wrapping div.

[cajieh]

Could create a map of providers and use the .find() method to identify the first function that returns true, but I didn't see a need for it at this time. I might be wrong.

[cajieh]

/test okd-scos-e2e-aws-ovn

[cajieh]

/verified later @yapei

[openshift-ci-robot]

@cajieh: This PR has been marked to be verified later by @yapei.

Details

In response to this:

/verified later @yapei

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[rhamilto]

/lgtm

[openshift-ci]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: cajieh, rhamilto, sg00dwin

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details

Needs approval from an approver in each of these files:

• frontend/OWNERS [cajieh,rhamilto]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[cajieh]

/verified later @yapei

[cajieh]

/retest

[openshift-ci-robot]

@cajieh: This PR has been marked to be verified later by @yapei.

Details

In response to this:

/verified later @yapei

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[openshift-ci-robot]

/retest-required

Remaining retests: 0 against base HEAD fd95953 and 2 for PR HEAD c054364 in total

[openshift-ci]

@cajieh: all tests passed!

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

[openshift-ci-robot]

@cajieh: Jira Issue OCPBUGS-61183: All pull requests linked via external trackers have merged:

• openshift/console#15459

This pull request has the verified-later tag and will need to be manually moved to VERIFIED after testing. Jira Issue OCPBUGS-61183 has been moved to the MODIFIED state.

Details

In response to this:

…azure annotation

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[cajieh]

/cherry-pick release-4.20

[openshift-cherrypick-robot]

@cajieh: new pull request created: #15507

Details

In response to this:

/cherry-pick release-4.20

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[openshift-merge-robot]

Fix included in accepted release 4.21.0-0.nightly-2025-09-13-162334

[cajieh]

/cherry-pick release-4.19

[openshift-cherrypick-robot]

@cajieh: #15459 failed to apply on top of branch "release-4.19":

Applying: cluster in workload identity mode is not applied with the token-auth-azure annotation
Using index info to reconstruct a base tree...
A	frontend/packages/console-shared/src/components/alerts/DismissableAlert.tsx
M	frontend/packages/operator-lifecycle-manager/src/components/operator-hub/operator-hub-subscribe.tsx
A	frontend/packages/operator-lifecycle-manager/src/hooks/useOperatorCatalogItems.tsx
Falling back to patching base and 3-way merge...
CONFLICT (modify/delete): frontend/packages/operator-lifecycle-manager/src/hooks/useOperatorCatalogItems.tsx deleted in HEAD and modified in cluster in workload identity mode is not applied with the token-auth-azure annotation. Version cluster in workload identity mode is not applied with the token-auth-azure annotation of frontend/packages/operator-lifecycle-manager/src/hooks/useOperatorCatalogItems.tsx left in tree.
Auto-merging frontend/packages/operator-lifecycle-manager/src/components/operator-hub/operator-hub-subscribe.tsx
CONFLICT (content): Merge conflict in frontend/packages/operator-lifecycle-manager/src/components/operator-hub/operator-hub-subscribe.tsx
CONFLICT (modify/delete): frontend/packages/console-shared/src/components/alerts/DismissableAlert.tsx deleted in HEAD and modified in cluster in workload identity mode is not applied with the token-auth-azure annotation. Version cluster in workload identity mode is not applied with the token-auth-azure annotation of frontend/packages/console-shared/src/components/alerts/DismissableAlert.tsx left in tree.
error: Failed to merge in the changes.
hint: Use 'git am --show-current-patch=diff' to see the failed patch
hint: When you have resolved this problem, run "git am --continue".
hint: If you prefer to skip this patch, run "git am --skip" instead.
hint: To restore the original branch and stop patching, run "git am --abort".
hint: Disable this message with "git config advice.mergeConflict false"
Patch failed at 0001 cluster in workload identity mode is not applied with the token-auth-azure annotation

Details

In response to this:

/cherry-pick release-4.19

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[cajieh]

Oh, it appears this regression was introduced in 4.20, but the target version in the ticket is 4.17. I couldn't reproduce the issue in versions 4.19 or older, and I believe @yapei couldn't either, correct?