KongConsumer is unable to fetch credential from secret

utkarsh079 · August 14, 2023, 9:21am

level=error msg="resource processing failed: credential \"test-apikey\" failure: failed to fetch secret: Secret kong/test-apikey not found" GVK="configuration.konghq.com/v1, Kind=KongConsumer" name=my-consumer namespace=kong

The secret exists in the namespace:

k get secret test-apikey -n kong -o yaml
apiVersion: v1
data:
  key: xxxx
  kongCredType: a2V5LWF1dGg=
kind: Secret
metadata:
  creationTimestamp: "2023-08-14T09:01:46Z"
  name: test-apikey
  namespace: kong
type: Opaque

Here is the kongConsumer CR:

apiVersion: configuration.konghq.com/v1
kind: KongConsumer
metadata:
  name: my-consumer
  namespace: kong
  annotations:
    kubernetes.io/ingress.class: kong
username: test-username
credentials:
- test-apikey

I have verified the role, rolebinding, serviceaccounts and those are all okay.
Would appreciate if someone can help.

tomknig · September 7, 2023, 8:00am

I am running into the same problem. I am running Kong (3.4, but also tried 3.3) in Kubernetes in DB-less mode, deployed with the official Kong Helm chart in version 2.26.5. I have validated that my KongConsumer and Secret are in the same namespace but the consumer still fails to fetch the referenced secret in the same way @utkarsh079 mentioned.
Error: resource processing failed: credential \"kong-secret-kafka-consumer\" failure: failed to fetch secret: Secret sq-platform/kong-secret-kafka-consumer not found. While kubectl get secret -n sq-platform kong-secret-kafka-consumer yields

NAME                         TYPE     DATA   AGE
kong-secret-kafka-consumer   Opaque   2      16m

@utkarsh079 did you figure out the root cause and or a solution for this problem? Otherwise, is there anybody else who might be able to help?