Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Error Forbidden when creating Irule with admin token value #1003

Open
RahmanBadru opened this issue Jul 26, 2024 · 1 comment
Open

Error Forbidden when creating Irule with admin token value #1003

RahmanBadru opened this issue Jul 26, 2024 · 1 comment
Labels
bug waiting-response

Comments

@RahmanBadru
Copy link

Environment

  • TMOS/Bigip Version: 17.1.1.3
  • Terraform Version: 1.6.3
  • Terraform bigip provider Version: 1.22.2

Summary

A clear and concise description of what the bug is.
Please also include information about the reproducibility and the severity/impact of the issue.

When i try to use token_value with token_auth=true, i can auth to f5, tf plan works, but terraform apply fails with "Error: error creating iRule /Common/sample: Post "https://$BIG-IP MGMT address/mgmt/tm/ltm/rule": Forbidden

Steps To Reproduce

Steps to reproduce the behavior:

  1. Provide terraform resource config which you are facing trouble along with the output of it.
provider "bigip" {
  address  = var.bigip_address
  token_auth = true
  token_value = var.token_value
}

ouput

Plan: 1 to add, 0 to change, 0 to destroy.
module.irule["sample.tcl"].bigip_ltm_irule.irule: Creating...
╷
│ Error: error creating iRule /Common/sample: Post "https://$BIG-IP MGMT address/mgmt/tm/ltm/rule": Forbidden
│ 
│   with module.irule["sample.tcl"].bigip_ltm_irule.irule,
│   on ../../modules/irule/main.tf line 1, in resource "bigip_ltm_irule" "irule":
│    1: resource "bigip_ltm_irule" "irule" {

  1. To get to know more about the issue, provide terraform debug logs

  2. To capture debug logs, export TF_LOG variable with debug ( export TF_LOG= DEBUG ) before
    runnning terraform apply/plan

  3. As3/DO json along with the resource config( for AS3/DO resource issues )

Expected Behavior

A clear and concise description of what you expected to happen.

The irule is meant to create with terraform apply

Actual Behavior

A clear and concise description of what actually happens.
Please include any applicable error output.

We get the error
Plan: 1 to add, 0 to change, 0 to destroy.
module.irule["sample.tcl"].bigip_ltm_irule.irule: Creating...

│ Error: error creating iRule /Common/sample: Post "https://$BIG-IP MGMT address/mgmt/tm/ltm/rule": Forbidden

│ with module.irule["sample.tcl"].bigip_ltm_irule.irule,
│ on ../../modules/irule/main.tf line 1, in resource "bigip_ltm_irule" "irule":
│ 1: resource "bigip_ltm_irule" "irule" {
@pgouband
Copy link
Collaborator

Hi,

I tested with the latest Terraform provider an BIG-IP version 17.1 with success.

How are you generating the token?

Can you check by creating a token with the following curl command (linux format)?

curl -k -u admin:mypassword -H "Content-Type: \
application/json" -X POST -d \
'{"username":"admin","password":"mypassword","loginProviderName":"tmos"}' \
https://X.X.X.X/mgmt/shared/authn/login

And test the token with the following curl command?

curl -k -H "X-F5-Auth-Token: \
mytoken" -X GET \
https://X.X.X.X/mgmt/tm/ltm

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug waiting-response
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@pgouband @RahmanBadru