Charts: [stable/airflow] Disable SSL when using LDAP for Web authentication
I'm using the latest version of airflow stable chart.
I've set configuration to connect to OpenLDAP server which was also deployed using the stable/openldap chart.
TLS is not enabled on LDAP server. So I gave AIRFLOW__LDAP__CACERT empty as I don't require it.
I'm getting the following error :
Traceback (most recent call last):
File "/usr/local/lib/python3.7/site-packages/flask/app.py", line 2446, in wsgi_app
response = self.full_dispatch_request()
File "/usr/local/lib/python3.7/site-packages/flask/app.py", line 1951, in full_dispatch_request
rv = self.handle_user_exception(e)
File "/usr/local/lib/python3.7/site-packages/flask/app.py", line 1820, in handle_user_exception
reraise(exc_type, exc_value, tb)
File "/usr/local/lib/python3.7/site-packages/flask/_compat.py", line 39, in reraise
raise value
File "/usr/local/lib/python3.7/site-packages/flask/app.py", line 1949, in full_dispatch_request
rv = self.dispatch_request()
File "/usr/local/lib/python3.7/site-packages/flask/app.py", line 1935, in dispatch_request
return self.view_functions[rule.endpoint](**req.view_args)
File "/usr/local/lib/python3.7/site-packages/flask_admin/base.py", line 69, in inner
return self._run_view(f, *args, **kwargs)
File "/usr/local/lib/python3.7/site-packages/flask_admin/base.py", line 368, in _run_view
return fn(self, *args, **kwargs)
File "/usr/local/lib/python3.7/site-packages/airflow/www/views.py", line 751, in login
return airflow.login.login(self, request)
File "/usr/local/lib/python3.7/site-packages/airflow/utils/db.py", line 74, in wrapper
return func(*args, **kwargs)
File "/usr/local/lib/python3.7/site-packages/airflow/contrib/auth/backends/ldap_auth.py", line 308, in login
LdapUser.try_login(username, password)
File "/usr/local/lib/python3.7/site-packages/airflow/contrib/auth/backends/ldap_auth.py", line 196, in try_login
configuration.conf.get("ldap", "bind_password"))
File "/usr/local/lib/python3.7/site-packages/airflow/contrib/auth/backends/ldap_auth.py", line 72, in get_ldap_connection
ca_certs_file=cacert)
File "/usr/local/lib/python3.7/site-packages/ldap3/core/tls.py", line 93, in __init__
raise LDAPSSLConfigurationError('invalid CA public key file')
ldap3.core.exceptions.LDAPSSLConfigurationError: invalid CA public key file
Any way I can set any configuration so as to ignore SSL cert.
@stevenmanton @gsemet @mohannadbanayosi
ramkrishnan8994
All 6 comments
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Any further update will cause the issue/pull request to no longer be considered stale. Thank you for your contributions.
![stale[bot] picture](https://avatars.githubusercontent.com/in/1724?v=4&s=40)
stale[bot]
on 24 Oct 2019
This issue is being automatically closed due to inactivity.
stale[bot]
on 7 Nov 2019
is there any news ? I am facing the same problem with no rbac (no FAB).
Ismail-Ham
on 20 Aug 2020
Facing the same issue in our project as well. Any news on this?
Karthik-13
on 7 Sep 2020
Hello any updates? Facing same problem...
KIRY4
on 6 Oct 2020
Hello. I have the same problem
mattrua
on 7 Oct 2020
Related issues
vsliouniaev
路
3Comments
harshmehta93
路
3Comments
kminehart
路
3Comments
out-of-band
路
3Comments
ChrisCooney
路
3Comments
Most helpful comment
is there any news ? I am facing the same problem with no rbac (no FAB).