Jesum Yip
01/12/2023, 10:02 AMgit clone <https://oauth2>:<token>@<gitlabURL>/repo.git
and it works just fine. however, i see my cerbos pods crashing with cerbos: error: failed to create store: failed to clone from https://<giturl>/repo.git to /work: authentication required
Jesum Yip
01/12/2023, 10:04 AMJesum Yip
01/12/2023, 10:05 AMDeployment
for cerbos, i see this:Jesum Yip
01/12/2023, 10:05 AMCharith (Cerbos)
username
to oauth2
. It appears to be empty in the screenshot.Jesum Yip
01/12/2023, 10:10 AMJesum Yip
01/12/2023, 10:10 AMJesum Yip
01/12/2023, 10:11 AMusername: oauth2:${GITHUB-TOKEN}
?Charith (Cerbos)
username: oauth2
and password: ${GITHUB-TOKEN}
Jesum Yip
01/12/2023, 10:11 AMJesum Yip
01/12/2023, 10:11 AMJesum Yip
01/12/2023, 10:12 AMJesum Yip
01/12/2023, 10:12 AMCharith (Cerbos)
Jesum Yip
01/12/2023, 10:13 AMCharith (Cerbos)
GITLAB_TOKEN
or whatever that makes sense to you. I reckon it would be confusing to see GITHUB-TOKEN
being used to authenticate to GitLab 🙂Jesum Yip
01/12/2023, 10:14 AMJesum Yip
01/12/2023, 10:19 AMcerbos: error: failed to create store: failed to build index: missing imports=0, missing scopes=0, duplicate definitions=0, load failures=1
Jesum Yip
01/12/2023, 10:19 AMJesum Yip
01/12/2023, 10:20 AMJesum Yip
01/12/2023, 10:20 AMJesum Yip
01/12/2023, 10:21 AMtest.yaml
in that policy store and this file has a single line in it:
# Blank
Jesum Yip
01/12/2023, 10:21 AMCharith (Cerbos)
Jesum Yip
01/12/2023, 10:22 AMCharith (Cerbos)
policies
directory that's referenced in the config?Charith (Cerbos)
Jesum Yip
01/12/2023, 10:23 AM<https://docs.cerbos.dev/cerbos/latest/policies/resource_policies.html>
for testingCharith (Cerbos)
Jesum Yip
01/12/2023, 10:24 AMJesum Yip
01/12/2023, 10:24 AMcerbos: error: failed to create store: failed to build index: missing imports=1, missing scopes=2, duplicate definitions=0, load failures=0
Charith (Cerbos)
Jesum Yip
01/12/2023, 10:24 AMJesum Yip
01/12/2023, 10:25 AMJesum Yip
01/12/2023, 10:25 AMCharith (Cerbos)
cerbos compile
on the directory to get more detailed errors. From the error message I think it's because you copied a resource policy that references a derived role set which doesn't exist in the storezJesum Yip
01/12/2023, 10:26 AMJesum Yip
01/12/2023, 10:26 AMJesum Yip
01/12/2023, 10:27 AMCharith (Cerbos)
Jesum Yip
01/12/2023, 10:27 AMJesum Yip
01/12/2023, 10:29 AMJesum Yip
01/12/2023, 10:29 AMCharith (Cerbos)
Jesum Yip
01/12/2023, 10:52 AMJesum Yip
01/12/2023, 10:52 AMCharith (Cerbos)