Hi, Am Dienstag, 18. Oktober 2022, 08:30:12 CEST schrieb Haupt, Torsten:
Hi,
since some time my clients can't contact the uyuni server. A "zypper ref" shows for example: zypper ref Permission to access 'https://xxxuyuni.xxx.de:443/rhn/manager/download/sle12_5-utilities-x86_64/re...' denied. Abort, retry, ignore? [a/r/i/...? shows all options] (a): i
Last contact time in uyuni is also a long time ago.
If I copy the url above in a browser, it get: Token is not valid to access repomd.xml in sle12_5-utilities-x86_64: JWT (claims->{"exp":1652861921,"iat":1621325921,"nbf":1621325801,"jti":"kufB_AaMdzSgIr92uq9cfA","org":1,"onlyChannels":["sle12_5-utilities-x86_64"]}) rejected due to invalid claims. Additional details: [The JWT is no longer valid - the evaluation time NumericDate{1666073380 -> 18.10.2022, 08:09:40 MESZ} is on or after the Expiration Time (exp=NumericDate{1652861921 -> 18.05.2022, 10:18:41 MESZ}) claim value.]
It seems a token is to old; but how to renew it?
Execute a highstate on that client. A new token should be already available in the DB, but only a state.apply deliver it to the client. Is your server permanently "on", or do you turn "off" the most of the time and only start it when you want to manage something? We calculate the expire time and somewhen on the last 30% of the time we renew the tokens and ship them when you call a highstate. But when the server is "off" most of the time this mechanism might break. -- Regards Michael Calmer -------------------------------------------------------------------------- Michael Calmer SUSE Software Solutions Germany GmbH, Frankenstraße 146, D-90461 Nuernberg T: +49 (0) 911 74053 0 F: +49 (0) 911 74053575 - e-mail: Michael.Calmer@suse.com -------------------------------------------------------------------------- SUSE Software Solutions Germany GmbH, GF: Ivo Totev, Andrew Myers, Andrew McDonald, Boudien Moerman (HRB 36809, AG Nürnberg)