Cloud Pak for Data

 View Only
Expand all | Collapse all

errors in CP4D

  • 1.  errors in CP4D

    Posted Fri December 06, 2019 06:03 AM
      |   view attached
    Hi,

    I finally installed Cloud Pak for data successfully at my own OpenShift environment.
    I also installed several services. the installation seemed to go fine.

    However, I can't use them, nor can I create a new project.

    I get a very strange error:"

    404 Not Found

    openresty

    "
    I do get this error at a lot of places within my ICP4D environment.

    I've been digging into where this comes from, and it seems the ibm-nginx container gives a lot of errors
    like:

    2019/12/06 08:07:11 [error] 60#60: *871 open() "/usr/local/openresty/nginx/html/projects/new-project" failed (2: No such file or directory), client: 10.128.0.1, server: localhost, request: "GET /projects/new-project?context=icp4data HTTP/1.1", host: "icp4d-cpd-icp4d.rhocp.sltncloud.nl", referrer: "https://icp4d-cpd-icp4d.rhocp.sltncloud.nl/zen/"

    I created a support file, and attached it to this post.

    can you please help me?

    Kind regards,

    Joris Weijters

    ------------------------------
    Joris Weijters
    ------------------------------

    #CloudPakforDataGroup

    Attachment(s)

    zip
    EydRLCZ.zip   529 KB 1 version


  • 2.  RE: errors in CP4D

    Posted Fri December 06, 2019 11:35 AM
    Hi Joris,

    Can you please restart the ibm-nginx pod and see if it resolves that issue




    ------------------------------
    Sidrah Junaid
    ------------------------------

    Original Message


  • 3.  RE: errors in CP4D

    Posted Mon December 09, 2019 01:01 AM
    HI,

    restarting the nginx pods didn't help

    ------------------------------
    Joris Weijters
    ------------------------------

    Original Message


  • 4.  RE: errors in CP4D

    Posted Mon December 09, 2019 04:30 AM

    Hi,

    Restarting the nginx is not enough.


    1) Please run:

    oc exec -it $(oc get po -l component=ibm-nginx --no-headers -o custom-columns=:metadata.name | head -n 1) -- nginx -T | grep proj -b5

    2) Please run:

    oc exec -it $(oc get po -l component=ibm-nginx --no-headers -o custom-columns=:metadata.name | head -n 1) -- ls /user-home/_global_/nginx-conf.d

    3) Please restart the watcher pod:

    oc delete po -l component=zen-watcher

    and then repeat steps 1& 2.

    Thanks



    ------------------------------
    TOMASZ HANUSIAK
    ------------------------------

    Original Message


  • 5.  RE: errors in CP4D

    Posted Mon December 09, 2019 05:56 AM
    Edited by System Fri January 20, 2023 04:29 PM
    Hi,

    This didn't do the trick:
    here the outcome of the commands.
    [root@rhocp-master ~]# oc exec -it $(oc get po -l component=ibm-nginx --no-headers -o custom-columns=:metadata.name | head -n 1) -- nginx -T | grep proj -b5

    [root@rhocp-master ~]# oc exec -it $(oc get po -l component=ibm-nginx --no-headers -o custom-columns=:metadata.name | head -n 1) -- ls /user-home/_global_/nginx-conf.d
    ax-proxy-routes.conf shaper-configmap.conf
    cognos-ibm-cde-prod-zen-module-config.conf spawner-configmap.conf
    env-api-ui-routes.conf volumes-service.conf
    icp4d-open-api-configmap.conf wkc-base-routes.conf
    icp4data-nav.conf wml-base-routes.conf
    model-viewer-routes.conf wml-main-routes.conf
    portal-ml-dl-routes.conf ws-job-scheduler-configmap.conf
    root.conf zen-admin.conf
    runtime-addon-py36.conf zen-ui.conf
    shaper-base-configmap.conf zen.conf

    [root@rhocp-master ~]# oc delete po -l component=zen-watcher
    pod "zen-watcher-b56ddf9b6-6kpj4" deleted

    [root@rhocp-master ~]# oc exec -it $(oc get po -l component=ibm-nginx --no-headers -o custom-columns=:metadata.name | head -n 1) -- nginx -T | grep proj -b5
    command terminated with exit code 1

    [root@rhocp-master ~]# oc exec -it $(oc get po -l component=ibm-nginx --no-headers -o custom-columns=:metadata.name | head -n 1) -- ls /user-home/_global_/nginx-conf.d
    ax-proxy-routes.conf spawner-configmap.conf
    cognos-ibm-cde-prod-zen-module-config.conf volumes-service.conf
    env-api-ui-routes.conf wkc-base-routes.conf
    icp4d-open-api-configmap.conf wml-base-routes.conf
    icp4data-nav.conf wml-main-routes.conf
    model-viewer-routes.conf ws-base-routes.conf
    portal-ml-dl-routes.conf ws-job-scheduler-configmap.conf
    root.conf zen-admin.conf
    runtime-addon-py36.conf zen-ui.conf
    shaper-base-configmap.conf zen.conf
    shaper-configmap.conf
    [root@rhocp-master ~]#

    Also when I look at the log of the zen-watcher, I see the folowing errors:

    2019/12/09 10:46:27 [emerg] 114#114: duplicate location "/v2/nav" in /user-home/_global_/nginx-conf.d/ws-base-routes.conf:295
    nginx: [emerg] duplicate location "/v2/nav" in /user-home/_global_/nginx-conf.d/ws-base-routes.conf:295
    nginx: configuration file /usr/local/openresty/nginx/conf/nginx.conf test failed
    time="2019-12-09 10:46:27" level=error msg=reload-nginx message=err pod_name=ibm-nginx-8448b4d449-8tnv4
    time="2019-12-09 10:46:27" level=info msg=processConfigData event="failed reloading nginx config file. Retrying. " reason="command terminated with exit code 1" retry_count=5
    reloading nginx conf
    setting up ssl
    using default-ssl certs
    2019/12/09 10:49:30 [emerg] 157#157: duplicate location "/v2/nav" in /user-home/_global_/nginx-conf.d/ws-base-routes.conf:295
    nginx: [emerg] duplicate location "/v2/nav" in /user-home/_global_/nginx-conf.d/ws-base-routes.conf:295
    nginx: configuration file /usr/local/openresty/nginx/conf/nginx.conf test failed
    time="2019-12-09 10:49:30" level=error msg=reload-nginx message=err pod_name=ibm-nginx-8448b4d449-8tnv4
    time="2019-12-09 10:49:30" level=info msg=processConfigData event="failed reloading nginx config file. Retrying. " reason="command terminated with exit code 1" retry_count=6

    Ans lokking further into the nginx container:
    # oc exec -it $(oc get po -l component=ibm-nginx --no-headers -o custom-columns=:metadata.name | head -n 1) /bin/bash
    bash-4.2$ ps -ef
    UID PID PPID C STIME TTY TIME CMD
    1000321+ 1 0 0 Dec06 ? 00:00:00 /bin/sh /scripts/startup.sh
    1000321+ 20 1 0 Dec06 ? 00:00:00 nginx: master process nginx -g daemon off;
    1000321+ 21 20 0 Dec06 ? 00:01:10 nginx: worker process
    1000321+ 22 20 0 Dec06 ? 00:00:01 nginx: cache manager process
    1000321+ 180 0 1 10:57 ? 00:00:00 /bin/bash
    1000321+ 187 180 0 10:57 ? 00:00:00 ps -ef
    bash-4.2$ nginx -T
    2019/12/09 10:57:29 [emerg] 188#188: duplicate location "/v2/nav" in /user-home/_global_/nginx-conf.d/ws-base-routes.conf:295
    nginx: [emerg] duplicate location "/v2/nav" in /user-home/_global_/nginx-conf.d/ws-base-routes.conf:295
    nginx: configuration file /usr/local/openresty/nginx/conf/nginx.conf test failed
    bash-4.2$


    ------------------------------
    Joris Weijters
    ------------------------------

    Original Message


  • 6.  RE: errors in CP4D

    Posted Mon December 09, 2019 06:29 AM

    Hi,

    This is a defect. Can you please show me the content of these 2 files?:

    ws-base-routes.conf
    icp4data-nav.conf

    oc exec -it $(oc get po -l component=ibm-nginx --no-headers -o custom-columns=:metadata.name | head -n 1) -- cat /user-home/_global_/nginx-conf.d/icp4data-nav.conf

    oc exec -it $(oc get po -l component=ibm-nginx --no-headers -o custom-columns=:metadata.name | head -n 1) -- cat /user-home/_global_/nginx-conf.d/ws-base-routes.conf

    Thanks




    ------------------------------
    TOMASZ HANUSIAK
    ------------------------------

    Original Message


  • 7.  RE: errors in CP4D

    Posted Mon December 09, 2019 06:43 AM
    Hi,

    Hereby the output of the  config files

    [root@rhocp-master ~]# oc exec -it $(oc get po -l component=ibm-nginx --no-headers -o custom-columns=:metadata.name | head -n 1) -- cat /user-home/_global_/nginx-conf.d/icp4data-nav.conf
    location /internal-nav-files {
    root /user-home/_global_/config/zen/nginx/;
    try_files $uri =404;
    }

    location = /v2/nav/js/nav.min.js {
    content_by_lua_block {
    local cjson = require "cjson"

    local addonsSubquery = ngx.location.capture("/zen-data/v1/addons");
    local addonsResponse = addonsSubquery.body;
    local addonsObj = cjson.decode(addonsResponse);
    local addonsCommaList = addonsObj.requestObj;

    local addonsList = "if (!window.addons ) {\n window.addons = {}\n}\n";

    for k, v in ipairs(addonsCommaList) do
    local addonObjString = v.Type:gsub("% ", "_");
    addonObjString = addonObjString:gsub("%-", "_");
    addonsList = addonsList .. "window.addons." .. addonObjString .. " = true;\n";
    end

    local timeout = ngx.location.capture("/internal-nav-files/timeout.js");
    local nav = ngx.location.capture("/internal-nav-files/nav.min.js");

    ngx.say(addonsList .. timeout.body .. nav.body);
    }
    }

    location /v2/nav {
    proxy_set_header Host $host;
    proxy_pass https://zen-core-svc:3443;
    }
    [root@rhocp-master ~]#
    [root@rhocp-master ~]# oc exec -it $(oc get po -l component=ibm-nginx --no-headers -o custom-columns=:metadata.name | head -n 1) -- cat /user-home/_global_/nginx-conf.d/icp4data-nav.conf
    location /internal-nav-files {
    root /user-home/_global_/config/zen/nginx/;
    try_files $uri =404;
    }

    location = /v2/nav/js/nav.min.js {
    content_by_lua_block {
    local cjson = require "cjson"

    local addonsSubquery = ngx.location.capture("/zen-data/v1/addons");
    local addonsResponse = addonsSubquery.body;
    local addonsObj = cjson.decode(addonsResponse);
    local addonsCommaList = addonsObj.requestObj;

    local addonsList = "if (!window.addons ) {\n window.addons = {}\n}\n";

    for k, v in ipairs(addonsCommaList) do
    local addonObjString = v.Type:gsub("% ", "_");
    addonObjString = addonObjString:gsub("%-", "_");
    addonsList = addonsList .. "window.addons." .. addonObjString .. " = true;\n";
    end

    local timeout = ngx.location.capture("/internal-nav-files/timeout.js");
    local nav = ngx.location.capture("/internal-nav-files/nav.min.js");

    ngx.say(addonsList .. timeout.body .. nav.body);
    }
    }

    location /v2/nav {
    proxy_set_header Host $host;
    proxy_pass https://zen-core-svc:3443;
    }
    [root@rhocp-master ~]# oc exec -it $(oc get po -l component=ibm-nginx --no-headers -o custom-columns=:metadata.name | head -n 1) -- cat /user-home/_global_/nginx-conf.d/ws-base-routes.conf
    set_by_lua $nsdomain 'return os.getenv("NS_DOMAIN")';
    location / {
    proxy_set_header Host $host;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "upgrade";
    proxy_http_version 1.1;
    set $portal_main portal-main.$nsdomain;
    add_header X-XSS-Protection "1; mode=block";
    add_header Content-Security-Policy "default-src 'self' data: 'unsafe-inline'; connect-src 'self' wss://$host;";
    add_header X-Content-Type-Options "nosniff";
    add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
    proxy_pass https://$portal_main:443;
    }
    location /home {
    proxy_set_header Host $host;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "upgrade";
    proxy_http_version 1.1;
    set $portal_main portal-main.$nsdomain;
    add_header X-XSS-Protection "1; mode=block";
    add_header Content-Security-Policy "default-src 'self' data: 'unsafe-inline'; connect-src 'self' wss://$host;";
    add_header X-Content-Type-Options "nosniff";
    add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
    proxy_pass https://$portal_main:443;
    }
    location /auth {
    proxy_set_header Host $host;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "upgrade";
    proxy_http_version 1.1;
    set $portal_main portal-main.$nsdomain;
    add_header X-XSS-Protection "1; mode=block";
    add_header Content-Security-Policy "default-src 'self' data: 'unsafe-inline'; connect-src 'self' wss://$host;";
    add_header X-Content-Type-Options "nosniff";
    add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
    proxy_pass https://$portal_main:443;
    }
    location /postauth {
    proxy_set_header Host $host;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "upgrade";
    proxy_http_version 1.1;
    set $portal_main portal-main.$nsdomain;
    add_header X-XSS-Protection "1; mode=block";
    add_header Content-Security-Policy "default-src 'self' data: 'unsafe-inline'; connect-src 'self' wss://$host;";
    add_header X-Content-Type-Options "nosniff";
    add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
    proxy_pass https://$portal_main:443;
    }
    location /settings {
    proxy_set_header Host $host;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "upgrade";
    proxy_http_version 1.1;
    set $portal_main portal-main.$nsdomain;
    add_header X-XSS-Protection "1; mode=block";
    add_header Content-Security-Policy "default-src 'self' data: 'unsafe-inline'; connect-src 'self' wss://$host;";
    add_header X-Content-Type-Options "nosniff";
    add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
    proxy_pass https://$portal_main:443;
    }
    location /projects {
    proxy_set_header Host $host;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "upgrade";
    proxy_http_version 1.1;
    set $portal_main portal-main.$nsdomain;
    add_header X-XSS-Protection "1; mode=block";
    add_header Content-Security-Policy "default-src 'self' data: 'unsafe-inline'; connect-src 'self' wss://$host;";
    add_header X-Content-Type-Options "nosniff";
    add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
    proxy_pass https://$portal_main:443;
    }
    location /dashboards {
    proxy_set_header Host $host;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "upgrade";
    proxy_http_version 1.1;
    set $portal_dashboards portal-dashboards.$nsdomain;
    add_header X-XSS-Protection "1; mode=block";
    add_header Content-Security-Policy "default-src 'self' data: 'unsafe-inline'; connect-src 'self' wss://$host;";
    add_header X-Content-Type-Options "nosniff";
    add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
    proxy_pass https://$portal_dashboards:443;
    }
    location /notifications {
    proxy_set_header Host $host;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "upgrade";
    proxy_http_version 1.1;
    set $portal_main portal-main.$nsdomain;
    add_header X-XSS-Protection "1; mode=block";
    add_header Content-Security-Policy "default-src 'self' data: 'unsafe-inline'; connect-src 'self' wss://$host;";
    add_header X-Content-Type-Options "nosniff";
    add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
    proxy_pass https://$portal_main:443;
    }
    location /common-error-page {
    proxy_set_header Host $host;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "upgrade";
    proxy_http_version 1.1;
    set $portal_main portal-main.$nsdomain;
    add_header X-XSS-Protection "1; mode=block";
    add_header Content-Security-Policy "default-src 'self' data: 'unsafe-inline'; connect-src 'self' wss://$host;";
    add_header X-Content-Type-Options "nosniff";
    add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
    proxy_pass https://$portal_main:443;
    }
    location /connections {
    proxy_set_header Host $host;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "upgrade";
    proxy_http_version 1.1;
    set $portal_main portal-main.$nsdomain;
    add_header X-XSS-Protection "1; mode=block";
    add_header Content-Security-Policy "default-src 'self' data: 'unsafe-inline'; connect-src 'self' wss://$host;";
    add_header X-Content-Type-Options "nosniff";
    add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
    proxy_pass https://$portal_main:443;
    }
    location /analytics/rstudio {
    proxy_set_header Host $host;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "upgrade";
    proxy_http_version 1.1;
    set $portal_main portal-main.$nsdomain;
    add_header X-XSS-Protection "1; mode=block";
    add_header Content-Security-Policy "default-src 'self' data: 'unsafe-inline'; connect-src 'self' wss://$host;";
    add_header X-Content-Type-Options "nosniff";
    add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
    proxy_pass https://$portal_main:443;
    }
    location /spaces {
    proxy_set_header Host $host;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "upgrade";
    proxy_http_version 1.1;
    set $portal_main portal-main.$nsdomain;
    add_header X-XSS-Protection "1; mode=block";
    add_header Content-Security-Policy "default-src 'self' data: 'unsafe-inline'; connect-src 'self' wss://$host;";
    add_header X-Content-Type-Options "nosniff";
    add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
    proxy_pass https://$portal_main:443;
    }
    location ~ ^/api/(?!(v.*)) {
    proxy_set_header Host $host;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "upgrade";
    proxy_http_version 1.1;
    set $portal_main portal-main.$nsdomain;
    add_header X-XSS-Protection "1; mode=block";
    add_header Content-Security-Policy "default-src 'self' data: 'unsafe-inline'; connect-src 'self' wss://$host;";
    add_header X-Content-Type-Options "nosniff";
    add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
    proxy_pass https://$portal_main:443;
    }
    location /css {
    proxy_set_header Host $host;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "upgrade";
    proxy_http_version 1.1;
    set $portal_main portal-main.$nsdomain;
    add_header X-XSS-Protection "1; mode=block";
    add_header Content-Security-Policy "default-src 'self' data: 'unsafe-inline'; connect-src 'self' wss://$host;";
    add_header X-Content-Type-Options "nosniff";
    add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
    proxy_pass https://$portal_main:443;
    }
    location /js {
    proxy_set_header Host $host;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "upgrade";
    proxy_http_version 1.1;
    set $portal_main portal-main.$nsdomain;
    add_header X-XSS-Protection "1; mode=block";
    add_header Content-Security-Policy "default-src 'self' data: 'unsafe-inline'; connect-src 'self' wss://$host;";
    add_header X-Content-Type-Options "nosniff";
    add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
    proxy_pass https://$portal_main:443;
    }
    location /fonts {
    proxy_set_header Host $host;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "upgrade";
    proxy_http_version 1.1;
    set $portal_main portal-main.$nsdomain;
    add_header X-XSS-Protection "1; mode=block";
    add_header Content-Security-Policy "default-src 'self' data: 'unsafe-inline'; connect-src 'self' wss://$host;";
    add_header X-Content-Type-Options "nosniff";
    add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
    proxy_pass https://$portal_main:443;
    }
    location /graphics {
    proxy_set_header Host $host;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "upgrade";
    proxy_http_version 1.1;
    set $portal_main portal-main.$nsdomain;
    add_header X-XSS-Protection "1; mode=block";
    add_header Content-Security-Policy "default-src 'self' data: 'unsafe-inline'; connect-src 'self' wss://$host;";
    add_header X-Content-Type-Options "nosniff";
    add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
    proxy_pass https://$portal_main:443;
    }
    location /events {
    proxy_set_header Host $host;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "upgrade";
    proxy_http_version 1.1;
    set $portal_main portal-main.$nsdomain;
    add_header X-XSS-Protection "1; mode=block";
    add_header Content-Security-Policy "default-src 'self' data: 'unsafe-inline'; connect-src 'self' wss://$host;";
    add_header X-Content-Type-Options "nosniff";
    add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
    proxy_pass https://$portal_main:443;
    }
    location /socket.io {
    proxy_set_header Host $host;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "upgrade";
    proxy_http_version 1.1;
    set $portal_main portal-main.$nsdomain;
    add_header X-XSS-Protection "1; mode=block";
    add_header Content-Security-Policy "default-src 'self' data: 'unsafe-inline'; connect-src 'self' wss://$host;";
    add_header X-Content-Type-Options "nosniff";
    add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
    proxy_pass https://$portal_main:443;
    }
    location ^~ /ap-components.min {
    proxy_set_header Host $host;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "upgrade";
    proxy_http_version 1.1;
    set $portal_main portal-main.$nsdomain;
    add_header X-XSS-Protection "1; mode=block";
    add_header Content-Security-Policy "default-src 'self' data: 'unsafe-inline'; connect-src 'self' wss://$host;";
    add_header X-Content-Type-Options "nosniff";
    add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
    proxy_pass https://$portal_main:443;
    }
    location ^~ /react-mde {
    proxy_set_header Host $host;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "upgrade";
    proxy_http_version 1.1;
    set $portal_main portal-main.$nsdomain;
    add_header X-XSS-Protection "1; mode=block";
    add_header Content-Security-Policy "default-src 'self' data: 'unsafe-inline'; connect-src 'self' wss://$host;";
    add_header X-Content-Type-Options "nosniff";
    add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
    proxy_pass https://$portal_main:443;
    }
    location /transactional/v2/projects {
    proxy_set_header Host $host;
    proxy_read_timeout 180s;
    set $portal_main portal-main.$nsdomain;
    proxy_pass https://$portal_main:443;
    }
    location /v2/projects {
    proxy_set_header Host $host;
    set $ngp_projects_api ngp-projects-api.$nsdomain;
    proxy_pass https://$ngp_projects_api:443;
    }
    location /v2/user_profiles {
    proxy_set_header Host $host;
    set $portal_common_api portal-common-api.$nsdomain;
    proxy_pass https://$portal_common_api:443;
    }
    location /job-manager {
    proxy_set_header Host $host;
    set $portal_job_manager portal-job-manager.$nsdomain;
    proxy_pass https://$portal_job_manager:443;
    }
    location /v1/nav {
    proxy_set_header Host $host;
    set $portal_common_api portal-common-api.$nsdomain;
    proxy_pass https://$portal_common_api:443;
    }
    location /v1/community_content {
    proxy_set_header Host $host;
    set $portal_common_api portal-common-api.$nsdomain;
    proxy_pass https://$portal_common_api:443;
    }
    location /v1/accounts {
    proxy_set_header Host $host;
    set $portal_common_api portal-common-api.$nsdomain;
    proxy_pass https://$portal_common_api:443;
    }
    location /v2/entitlements {
    proxy_set_header Host $host;
    set $portal_common_api portal-common-api.$nsdomain;
    proxy_pass https://$portal_common_api:443;
    }
    location /v2/nav {
    proxy_set_header Host $host;
    set $portal_common_api portal-common-api.$nsdomain;
    add_header X-XSS-Protection "1; mode=block";
    add_header Content-Security-Policy "default-src 'self' data: 'unsafe-inline'; connect-src 'self' wss://$host;";
    add_header X-Content-Type-Options "nosniff";
    add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
    proxy_pass https://$portal_common_api:443;
    }
    location /v1/notifications {
    proxy_set_header Host $host;
    set $portal_notifications portal-notifications.$nsdomain;
    proxy_pass https://$portal_notifications:443;
    }
    location /v2/asset_files {
    proxy_set_header Host $host;
    keepalive_timeout 650;
    send_timeout 600;
    proxy_connect_timeout 600;
    proxy_send_timeout 600;
    proxy_read_timeout 600;
    set $asset_files_api asset-files-api.$nsdomain;
    proxy_pass https://$asset_files_api:443;
    }
    location /v2/dashboards {
    proxy_set_header Host $host;
    set $dap_dashboards_api dap-dashboards-api.$nsdomain;
    proxy_pass https://$dap_dashboards_api:443;
    }
    [root@rhocp-master ~]#







    ------------------------------
    Joris Weijters
    ------------------------------

    Original Message


  • 8.  RE: errors in CP4D

    Posted Mon December 09, 2019 08:28 AM

    Hi,

    Do you see this section:

    location /v2/nav {
    proxy_set_header Host $host;
    set $portal_common_api portal-common-api.$nsdomain;
    add_header X-XSS-Protection "1; mode=block";
    add_header Content-Security-Policy "default-src 'self' data: 'unsafe-inline'; connect-src 'self' wss://$host;";
    add_header X-Content-Type-Options "nosniff";
    add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
    proxy_pass https://$portal_common_api:443;
    }

    in the second file?

    This is causing the issue.

    My suggestion would be to remove this section, and then restart all nginx pods.

    oc exec -it $(oc get po -l component=ibm-nginx --no-headers -o custom-columns=:metadata.name | head -n 1) -- bash
    bash-4.2$ cd /user-home/_global_/nginx-conf.d/
    bash-4.2$ vi ws-base-routes.conf

    Thanks



    ------------------------------
    TOMASZ HANUSIAK
    ------------------------------

    Original Message


  • 9.  RE: errors in CP4D

    Posted Mon December 09, 2019 09:41 AM
    Hi Tomasz,

    This seems to solve my problem. Do you know where it has been originated?

    Thanks for your support.


    ------------------------------
    Joris Weijters
    ------------------------------

    Original Message


  • 10.  RE: errors in CP4D

    Posted Mon December 09, 2019 09:56 AM
    Hi,

    I will follow up with the responsible team to better understand the root cause.

    Thanks

    ------------------------------
    TOMASZ HANUSIAK
    ------------------------------

    Original Message


  • 11.  RE: errors in CP4D

    Posted Mon December 09, 2019 11:22 AM
    Edited by System Fri January 20, 2023 04:18 PM

    Hi,

    Can you please share with us the following?:

    oc logs $(oc get po -l name=cpd-install-operator --no-headers -o custom-columns=:metadata.name ) | grep ibmProd

    oc exec -it $(oc get po -l name=cpd-install-operator --no-headers -o custom-columns=:metadata.name ) -- helm ls --tls

    Thanks



    ------------------------------
    TOMASZ HANUSIAK
    ------------------------------

    Original Message


  • 12.  RE: errors in CP4D

    Posted Tue December 10, 2019 01:03 AM
    Hi,

    I Installed:

    lite
    wsl
    wml
    cde

    After the fix I installed
    ca
    dv

    hereby I send the requested information:

    [root@rhocp-master ~]# oc logs $(oc get po -l name=cpd-install-operator --no-headers -o custom-columns=:metadata.name ) | grep ibmProd
    time="2019-12-06T07:05:21Z" level=info msg="Values override output: global:\n databases: false\n docker_registry_prefix: cp.icr.io/cp/cpd\n dockerRegistryPrefix: cp.icr.io/cp/cpd\n ibmProduct: zen\n image:\n tag: v2.5.0.0-210\n persistence:\n enabled: true\n storageClassName: managed-nfs-storage\n useDynamicProvisioning: true\n storageClassName: managed-nfs-storage\n storageclass_name: managed-nfs-storage\n use_external_prefix: true\nnamespace: null\nnginxRepo:\n resolver: kubernetes.default\nzenCoreApi:\n noTls: false\n tillerNamespace: null\n tillerPort: 44134\nzenProxy:\n serviceType: ClusterIP\n"
    time="2019-12-06T07:06:59Z" level=info msg="Values override output: global:\n databases: false\n docker_registry_prefix: cp.icr.io/cp/cpd\n dockerRegistryPrefix: cp.icr.io/cp/cpd\n ibmProduct: zen\n image:\n tag: v2.5.0.0-210\n persistence:\n enabled: true\n storageClassName: managed-nfs-storage\n useDynamicProvisioning: true\n storageClassName: managed-nfs-storage\n storageclass_name: managed-nfs-storage\n use_external_prefix: true\nnamespace: null\nnginxRepo:\n resolver: kubernetes.default\nzenCoreApi:\n noTls: false\n tillerNamespace: null\n tillerPort: 44134\nzenProxy:\n serviceType: ClusterIP\n"
    time="2019-12-06T07:07:54Z" level=info msg="Values override output: global:\n databases: false\n docker_registry_prefix: cp.icr.io/cp/cpd\n dockerRegistryPrefix: cp.icr.io/cp/cpd\n ibmProduct: zen\n image:\n tag: v2.5.0.0-210\n persistence:\n enabled: true\n storageClassName: managed-nfs-storage\n useDynamicProvisioning: true\n storageClassName: managed-nfs-storage\n storageclass_name: managed-nfs-storage\n use_external_prefix: true\nnamespace: null\nnginxRepo:\n resolver: kubernetes.default\nzenCoreApi:\n noTls: false\n tillerNamespace: null\n tillerPort: 44134\nzenProxy:\n serviceType: ClusterIP\n"
    time="2019-12-06T07:18:55Z" level=info msg="Values override output: elasticsearch:\n fsGroup: \"\"\nglobal:\n docker_registry_prefix: cp.icr.io/cp/cpd\n dockerRegistryPrefix: cp.icr.io/cp/cpd\n ibmProduct: zen\n persistence:\n storageClassName: managed-nfs-storage\n useDynamicProvisioning: true\n storageClassName: managed-nfs-storage\n storageclass_name: managed-nfs-storage\nredis-ha:\n rbac:\n create: false\n securityContext:\n fsGroup: \"\"\n runAsNonRoot: \"\"\n runAsUser: \"\"\nwdp-rabbitmq:\n rbac:\n create: false\n securityContext:\n fsGroup: \"\"\n runAsUser: \"\"\n serviceAccount:\n create: false\n name: cpd-viewer-sa\n"
    time="2019-12-06T07:23:14Z" level=info msg="Values override output: global:\n docker_registry_prefix: cp.icr.io/cp/cpd\n dockerRegistryPrefix: cp.icr.io/cp/cpd\n ibmProduct: zen\n persistence:\n storageClassName: managed-nfs-storage\n useDynamicProvisioning: true\n storageClassName: managed-nfs-storage\n storageclass_name: managed-nfs-storage\n"
    time="2019-12-06T07:40:23Z" level=info msg="Values override output: global:\n APP_ENV_COMMON_HOST: internal-nginx-svc\n APP_ENV_DB_HOST: couchdb-ha-svc:6984\n APP_ENV_HOST_PORT: \"12443\"\n converter:\n mount_secret: false\n docker_registry_prefix: cp.icr.io/cp/cpd\n dockerRegistryPrefix: cp.icr.io/cp/cpd\n ha: false\n ibmProduct: zen\n jobmanager:\n mount_secret: false\n masterTimezone: Europe/Amsterdam\n nb_api:\n mount_secret: false\n persistence:\n storageClassName: managed-nfs-storage\n useDynamicProvisioning: true\n replicaCount: 1\n storageClassName: managed-nfs-storage\n storageclass_name: managed-nfs-storage\n ws_ui:\n mount_secret: false\n"
    time="2019-12-06T07:41:24Z" level=info msg="Values override output: global:\n docker_registry_prefix: cp.icr.io/cp/cpd\n dockerRegistryPrefix: cp.icr.io/cp/cpd\n ha: false\n ibmProduct: zen\n masterTimezone: Europe/Amsterdam\n persistence:\n storageClassName: managed-nfs-storage\n useDynamicProvisioning: true\n replicaCount: 1\n storageClassName: managed-nfs-storage\n storageclass_name: managed-nfs-storage\n"
    time="2019-12-06T07:42:13Z" level=info msg="Values override output: global:\n docker_registry_prefix: cp.icr.io/cp/cpd\n dockerRegistryPrefix: cp.icr.io/cp/cpd\n ha: false\n ibmProduct: zen\n masterTimezone: Europe/Amsterdam\n persistence:\n storageClassName: managed-nfs-storage\n useDynamicProvisioning: true\n replicaCount: 1\n storageClassName: managed-nfs-storage\n storageclass_name: managed-nfs-storage\n"
    time="2019-12-06T07:44:03Z" level=info msg="Values override output: global:\n docker_registry_prefix: cp.icr.io/cp/cpd\n dockerRegistryPrefix: cp.icr.io/cp/cpd\n ha: false\n ibmProduct: zen\n masterTimezone: Europe/Amsterdam\n persistence:\n storageClassName: managed-nfs-storage\n useDynamicProvisioning: true\n replicaCount: 1\n storageClassName: managed-nfs-storage\n storageclass_name: managed-nfs-storage\n"
    time="2019-12-06T07:47:04Z" level=info msg="Values override output: global:\n docker_registry_prefix: cp.icr.io/cp/cpd\n dockerRegistryPrefix: cp.icr.io/cp/cpd\n ha: false\n ibmProduct: zen\n masterTimezone: Europe/Amsterdam\n persistence:\n storageClassName: managed-nfs-storage\n useDynamicProvisioning: true\n replicaCount: 1\n storageClassName: managed-nfs-storage\n storageclass_name: managed-nfs-storage\n"
    time="2019-12-06T08:49:28Z" level=info msg="Values override output: global:\n docker_registry_prefix: cp.icr.io/cp/cpd\n dockerRegistryPrefix: cp.icr.io/cp/cpd\n ibmProduct: zen\n persistence:\n storageClassName: managed-nfs-storage\n useDynamicProvisioning: true\n storageClassName: managed-nfs-storage\n storageclass_name: managed-nfs-storage\n"
    [root@rhocp-master ~]#


    [root@rhocp-master ~]# oc exec -it $(oc get po -l name=cpd-install-operator --no-headers -o custom-columns=:metadata.name ) -- helm ls --tls
    NAME REVISION UPDATED STATUS CHART APP VERSION NAMESPACE
    0010-infra 1 Fri Dec 6 07:05:21 2019 DEPLOYED 0010-infra-2.5.0 2.5.0.0 icp4d
    0015-setup 1 Fri Dec 6 07:06:59 2019 DEPLOYED 0015-setup-2.5.0 2.5.0.0 icp4d
    0020-core 1 Fri Dec 6 07:07:54 2019 DEPLOYED 0020-zen-base-2.5.0 2.5.0.0 icp4d
    0022-wkc-base-prereqs 1 Fri Dec 6 07:18:55 2019 DEPLOYED wkc-base-prereqs-3.0.257 3.0.0 icp4d
    0027-wkc-base 1 Fri Dec 6 07:23:14 2019 DEPLOYED wkc-base-3.0.257 3.0.0 icp4d
    cde 1 Fri Dec 6 08:49:28 2019 DEPLOYED ibm-cde-prod-1.13.28 1.13.28 icp4d
    cognos-analytics 1 Mon Dec 9 15:31:59 2019 DEPLOYED cognos-analytics-addon-1.4.2 1.0 icp4d
    dv 1 Mon Dec 9 15:42:01 2019 DEPLOYED ibm-dv-addon-1.0.0 1.3.0.0 icp4d
    ibm-0100-model-viewer-prod 1 Fri Dec 6 07:44:03 2019 DEPLOYED ibm-0100-model-viewer-prod-1.0.30 2.1.0.0 icp4d
    ibm-asset-browser-prod 1 Fri Dec 6 07:37:26 2019 DEPLOYED ibm-asset-browser-prod-1.0.72 2.1.0.0 icp4d
    ibm-dap-base-prod 1 Fri Dec 6 07:26:33 2019 DEPLOYED ibm-dap-base-prod-2.1.0 2.1.0 icp4d
    ibm-data-refinery-prod 1 Fri Dec 6 07:47:04 2019 DEPLOYED ibm-data-refinery-prod-1.0.72 2.1.0.0 icp4d
    ibm-environments-prod 1 Fri Dec 6 07:32:23 2019 DEPLOYED ibm-wsl-environments-prod-2.1.201 2.1.0.0 icp4d
    ibm-job-scheduler-prod 1 Fri Dec 6 07:34:43 2019 DEPLOYED ibm-job-scheduler-prod-2.1.0 2.1.0 icp4d
    ibm-notebooks-prod 1 Fri Dec 6 07:40:23 2019 DEPLOYED ibm-wsl-notebooks-prod-2.1.201 2.1.0.0 icp4d
    ibm-runtime-addon-py36-prod 1 Fri Dec 6 07:41:24 2019 DEPLOYED ibm-wsl-runtime-addon-py36-prod-2.1.201 2.1.0.0 icp4d
    ibm-runtime-base-prod 1 Fri Dec 6 07:33:42 2019 DEPLOYED ibm-runtime-base-prod-2.0.125 2.1.0.0 icp4d
    ibm-volume-setup-prod 1 Fri Dec 6 07:22:04 2019 DEPLOYED ibm-volume-setup-prod-2.0.23 2.1.0.0 icp4d
    ibm-wml-ui-prod 1 Fri Dec 6 07:57:36 2019 DEPLOYED ibm-wml-ui-prod-2.1.0 2.1.0 icp4d
    ibm-ws-ml-prod 1 Fri Dec 6 07:42:13 2019 DEPLOYED ibm-ws-ml-prod-2.1.0 2.1.0 icp4d
    wml 1 Fri Dec 6 07:54:12 2019 DEPLOYED wml-base-2.1.0.0-108 2.1.0.0 icp4d
    [root@rhocp-master ~]#





    ------------------------------
    Joris Weijters
    ------------------------------

    Original Message