[v25.1.x] sec: Don't block for update on OIDC service start by vbotbuildovich · Pull Request #28611 · redpanda-data/redpanda

vbotbuildovich · 2025-11-18T18:00:09Z

Backport of PR #28608

Upon OIDC service start, it will attempt to get the certificates from the IdP. If the service is unable to communicate with the IdP, this process times out after 5 seconds. If this occurs during cluster start up, this will prevent leadership election from occurring, which is especially troublesome with the controller. This has led to a cascade of other failures (such as being unable to assign the cluster ID in the metrics report service). This change starts the update in the background to permit the rest of startup to continue without being blocked. Signed-off-by: Michael Boquard <michael@redpanda.com> (cherry picked from commit 06e4561)

michael-redpanda

clean backport

vbotbuildovich · 2025-11-19T15:24:24Z

CI test results

test results on build#76567

test_class	test_method	test_arguments	test_kind	job_url	test_status	passed	reason	test_history
kafka_server_rpfixture	kafka_server_rpfixture		unit	https://buildkite.com/redpanda/redpanda/builds/76567#019a9822-15b3-436f-b764-5d41a4ddc0a8	FLAKY	1/2
DeleteRecordsTest	test_delete_records_concurrent_truncations	{"cloud_storage_enabled": true, "truncate_point": "one_below_high_watermark"}	integration	https://buildkite.com/redpanda/redpanda/builds/76567#019a9866-f8a3-474c-8e95-81b022c92b96	FLAKY	16/21	upstream reliability is '100.0'. current run reliability is '76.19047619047619'. drift is 23.80952 and the allowed drift is set to 50. The test should PASS	https://redpanda.metabaseapp.com/dashboard/87-tests?tab=142-dt-individual-test-history&test_class=DeleteRecordsTest&test_method=test_delete_records_concurrent_truncations
RecreateTopicMetadataTest	test_recreated_topic_metadata_are_valid	{"replication_factor": 3}	integration	https://buildkite.com/redpanda/redpanda/builds/76567#019a986c-4be5-4a9f-b18e-c744fb37e0bc	FLAKY	20/21	upstream reliability is '100.0'. current run reliability is '95.23809523809523'. drift is 4.7619 and the allowed drift is set to 50. The test should PASS	https://redpanda.metabaseapp.com/dashboard/87-tests?tab=142-dt-individual-test-history&test_class=RecreateTopicMetadataTest&test_method=test_recreated_topic_metadata_are_valid
test_archiver_manager_smp_rpfixture	test_archiver_manager_smp_rpfixture		unit	https://buildkite.com/redpanda/redpanda/builds/76567#019a9822-15b3-436f-b764-5d41a4ddc0a8	FLAKY	1/2

vbotbuildovich added this to the v25.1.x-next milestone Nov 18, 2025

vbotbuildovich added the kind/backport PRs targeting a stable branch label Nov 18, 2025

vbotbuildovich requested a review from michael-redpanda November 18, 2025 18:00

github-actions Bot added the area/redpanda label Nov 18, 2025

michael-redpanda approved these changes Nov 18, 2025

View reviewed changes

michael-redpanda enabled auto-merge November 18, 2025 18:21

michael-redpanda self-assigned this Nov 18, 2025

michael-redpanda merged commit a515126 into redpanda-data:v25.1.x Nov 19, 2025
17 checks passed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[v25.1.x] sec: Don't block for update on OIDC service start#28611

[v25.1.x] sec: Don't block for update on OIDC service start#28611
michael-redpanda merged 1 commit into
redpanda-data:v25.1.xfrom
vbotbuildovich:backport-pr-28608-v25.1.x-704

vbotbuildovich commented Nov 18, 2025

Uh oh!

michael-redpanda left a comment

Uh oh!

vbotbuildovich commented Nov 19, 2025

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Conversation

vbotbuildovich commented Nov 18, 2025

Uh oh!

michael-redpanda left a comment

Choose a reason for hiding this comment

Uh oh!

vbotbuildovich commented Nov 19, 2025

CI test results

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants