TechQA.

Wrapping multiline string ssh-key in yaml for secret in openshift

958 views Asked by At

im having my application deployed in openshift, for file transfer we're using sftp and have configured sftp private key via secret but on making the api call via swagger , getting the response as invalid private key any help on how i can include this private key which is of multiple lines in the secret yaml file

below is the error im getting

------stack trace-------

java.lang.IllegalStateException: failed to create SFTP Session
    at org.springframework.integration.sftp.session.DefaultSftpSessionFactory.getSession(DefaultSftpSessionFactory.java:404)
Caused by: com.jcraft.jsch.JSchException: invalid privatekey: [B@50ae9b59
    at com.jcraft.jsch.KeyPair.load(KeyPair.java:747)
2022-10-19 13:33:43,123 - [threadPoolTaskExecutor-2] ERROR - transactionId:  - Encountered an error executing step Download 0145A files in job Download Job
 java.util.concurrent.CompletionException: org.springframework.messaging.MessagingException: Failed to execute on session; nested exception is java.lang.IllegalStateException: failed to create SFTP Session
    at java.base/java.util.concurrent.CompletableFuture.encodeThrowable(Unknown Source)
Caused by: org.springframework.messaging.MessagingException: Failed to execute on session; nested exception is java.lang.IllegalStateException: failed to create SFTP Session
    at org.springframework.integration.file.remote.RemoteFileTemplate.execute(RemoteFileTemplate.java:461)
Caused by: java.lang.IllegalStateException: failed to create SFTP Session
    at org.springframework.integration.sftp.session.DefaultSftpSessionFactory.getSession(DefaultSftpSessionFactory.java:404)
Caused by: com.jcraft.jsch.JSchException: invalid privatekey: [B@7204aa68

below is the secret file that i used

secret-test.yaml
apiVersion: xx
kind: Secret
metadata:
  name: xxxxx
  namespace: xxxxxxxx
type: Opaque
stringData:
  key_name: >
    PuTTY-User-Key-File-2: ssh-rsa\r\
    Encryption: none\r\
    Comment: rsa-key-20210504\r\
    Public-Lines: 12\r\
    AAAAB3NzaC1yc2EAAAABJQAAAgEAhi7HxCYBA3gvK0UbFenUlQTGUsDfvCXbEg/Y\r\
    As3jvPl6hIjHp2xAOyOQ5P6A8zx9prjk06Q5q44lKzZXgGzJS8ZxpsMWsPA/+x1M\r\
    .
    .
    .
    4s5A+20CflMMEwK/G6Kny7ZduVRDmULzbUjaTPyw8rHYI9Do/YIIskDlwbdy3alg\r\
    3/PYjrPEUq62yXZEvt7XOcSesrrVLLDMsOK3LJvQqZCrVFnRgTSoxDhGFNwb8De8\r\
    jbdW1j/G+vPegA7yjI7r2QZx7gI23CX0XZkXud3LzhZn02RmdboxErrRMKrp/cgX\r\
    zdWd2DM=\r\
    Private-Lines: 28\r\
    AAACACCjmGAk631ibFaiG1hbeOX6PhQhE9PR21droz7zz5yrYv2kuvFfhT7RTMIU\r\
    .....
    EwlRTPzhe070NNze7yNMp4zsTAG2I98PEXZYbl7oyUXkzJE/AmQqwgOomoWx8IEL\r\
    U6E=\r\
    Private-MAC: 87d58cb0e3e60ef943ee9396fe9\r

Things i tried:

  • included |- , >-, only |,only >
  • tried enclosing in double quotes with backslash as escape character

something like below

         "PuTTY-User-Key-File-2: ssh-rsa\
         Encryption: none\
         Comment: rsa-key-20210504..."
still got the same error as above
kubernetes yaml kubernetes-secrets openshift-enterprise redhat-containers
Original Q&A
2

There are 2 answers

3
Harsh Manvar On

Did you tried the command :

kubectl create secret generic ssh-keys --from-file=id_rsa=/path/to/.ssh/id_rsa

Ref official doc : https://kubernetes.io/docs/concepts/configuration/secret/#use-case-pod-with-ssh-keys

0
Sushmitha On

i tried with type as kubernetes.io/ssh-auth instead of Opaque and it worked !! thanks for the suggestions provided

Related Questions in KUBERNETES

Related Questions in YAML

Related Questions in KUBERNETES-SECRETS

Related Questions in OPENSHIFT-ENTERPRISE

Related Questions in REDHAT-CONTAINERS

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json

Trending Questions