Getting 400 Bad Request: Invalid JWT Signature
karlomedallo opened this issue · 1 comments
karlomedallo commented
Hi,
I was trying to use this module:
module "gke-gitlab" {
source = "git::https://github.com/terraform-google-modules/terraform-google-gke-gitlab.git"
project_id = "hm-internal"
certmanager_email = "gcp@example.io"
region = "asia-southeast1"
}
Also, I tried applying examples\simple_example
but I got the same error.
I tried running this in 2 completely different GCP subscriptions too.
Note that using the same credentials, that I'm using, a simple resource creation works for me such as:
resource "google_storage_bucket" "test-bucket" {
name = "hm-internal"
location = "asia-southeast1"
force_destroy = true
project = "hm-internal"
}
Error:
Error: Batch "project/hm-internal/services:batchEnable" for request "Enable Project Service \"compute.googleapis.com\" for project \"hm-internal\"" returned error: batch request and retry as single request failed - final error: failed to send enable services request: Post https://serviceusage.googleapis.com/v1/projects/hm-internal/services/compute.googleapis.com:enable?alt=json&prettyPrint=false: oauth2: cannot fetch token: 400 Bad Request
Response: {"error":"invalid_grant","error_description":"Invalid JWT Signature."}. To debug individual requests, try disabling batching: https://www.terraform.io/docs/providers/google/guides/provider_reference.html#enable_batching
on ../../main.tf line 60, in resource "google_project_service" "compute":
60: resource "google_project_service" "compute" {
Error: Batch "project/hm-internal/services:batchEnable" for request "Enable Project Service \"container.googleapis.com\" for project \"hm-internal\"" returned error: batch request and retry as single request failed - final error: failed to send enable services request: Post https://serviceusage.googleapis.com/v1/projects/hm-internal/services/container.googleapis.com:enable?alt=json&prettyPrint=false: oauth2: cannot fetch token: 400 Bad Request
Response: {"error":"invalid_grant","error_description":"Invalid JWT Signature."}. To debug individual requests, try disabling batching: https://www.terraform.io/docs/providers/google/guides/provider_reference.html#enable_batching
on ../../main.tf line 66, in resource "google_project_service" "gke":
66: resource "google_project_service" "gke" {
Error: Batch "project/hm-internal/services:batchEnable" for request "Enable Project Service \"servicenetworking.googleapis.com\" for project \"hm-internal\"" returned error: batch request and retry as single request failed - final error: failed to send enable services request: Post https://serviceusage.googleapis.com/v1/projects/hm-internal/services/servicenetworking.googleapis.com:enable?alt=json&prettyPrint=false: oauth2: cannot fetch token: 400 Bad Request
Response: {"error":"invalid_grant","error_description":"Invalid JWT Signature."}. To debug individual requests, try disabling batching: https://www.terraform.io/docs/providers/google/guides/provider_reference.html#enable_batching
on ../../main.tf line 72, in resource "google_project_service" "service_networking":
72: resource "google_project_service" "service_networking" {
Error: Batch "project/hm-internal/services:batchEnable" for request "Enable Project Service \"cloudresourcemanager.googleapis.com\" for project \"hm-internal\"" returned error: batch request and retry as single request failed - final error: failed to send enable services request: Post https://serviceusage.googleapis.com/v1/projects/hm-internal/services/cloudresourcemanager.googleapis.com:enable?alt=json&prettyPrint=false: oauth2: cannot fetch token: 400 Bad Request
Response: {"error":"invalid_grant","error_description":"Invalid JWT Signature."}. To debug individual requests, try disabling batching: https://www.terraform.io/docs/providers/google/guides/provider_reference.html#enable_batching
on ../../main.tf line 78, in resource "google_project_service" "cloudresourcemanager":
78: resource "google_project_service" "cloudresourcemanager" {
Error: Batch "project/hm-internal/services:batchEnable" for request "Enable Project Service \"redis.googleapis.com\" for project \"hm-internal\"" returned error: batch request and retry as single request failed - final error: failed to send enable services request: Post https://serviceusage.googleapis.com/v1/projects/hm-internal/services/redis.googleapis.com:enable?alt=json&prettyPrint=false: oauth2: cannot fetch token: 400 Bad Request
Response: {"error":"invalid_grant","error_description":"Invalid JWT Signature."}. To debug individual requests, try disabling batching: https://www.terraform.io/docs/providers/google/guides/provider_reference.html#enable_batching
on ../../main.tf line 84, in resource "google_project_service" "redis":
84: resource "google_project_service" "redis" {
Error: Error creating service account: Post https://iam.googleapis.com/v1/projects/hm-internal/serviceAccounts?alt=json&prettyPrint=false: oauth2: cannot fetch token: 400 Bad Request
Response: {"error":"invalid_grant","error_description":"Invalid JWT Signature."}
on ../../main.tf line 90, in resource "google_service_account" "gitlab_gcs":
90: resource "google_service_account" "gitlab_gcs" {
Error: Post https://www.googleapis.com/storage/v1/b?alt=json&prettyPrint=false&project=hm-internal: oauth2: cannot fetch token: 400 Bad Request
Response: {"error":"invalid_grant","error_description":"Invalid JWT Signature."}
on ../../main.tf line 207, in resource "google_storage_bucket" "gitlab-backups":
207: resource "google_storage_bucket" "gitlab-backups" {
Error: Post https://www.googleapis.com/storage/v1/b?alt=json&prettyPrint=false&project=hm-internal: oauth2: cannot fetch token: 400 Bad Request
Response: {"error":"invalid_grant","error_description":"Invalid JWT Signature."}
on ../../main.tf line 212, in resource "google_storage_bucket" "gitlab-uploads":
212: resource "google_storage_bucket" "gitlab-uploads" {
Error: Post https://www.googleapis.com/storage/v1/b?alt=json&prettyPrint=false&project=hm-internal: oauth2: cannot fetch token: 400 Bad Request
Response: {"error":"invalid_grant","error_description":"Invalid JWT Signature."}
on ../../main.tf line 217, in resource "google_storage_bucket" "gitlab-artifacts":
217: resource "google_storage_bucket" "gitlab-artifacts" {
Error: Post https://www.googleapis.com/storage/v1/b?alt=json&prettyPrint=false&project=hm-internal: oauth2: cannot fetch token: 400 Bad Request
Response: {"error":"invalid_grant","error_description":"Invalid JWT Signature."}
on ../../main.tf line 222, in resource "google_storage_bucket" "git-lfs":
222: resource "google_storage_bucket" "git-lfs" {
Error: Post https://www.googleapis.com/storage/v1/b?alt=json&prettyPrint=false&project=hm-internal: oauth2: cannot fetch token: 400 Bad Request
Response: {"error":"invalid_grant","error_description":"Invalid JWT Signature."}
on ../../main.tf line 227, in resource "google_storage_bucket" "gitlab-packages":
227: resource "google_storage_bucket" "gitlab-packages" {
Error: Post https://www.googleapis.com/storage/v1/b?alt=json&prettyPrint=false&project=hm-internal: oauth2: cannot fetch token: 400 Bad Request
Response: {"error":"invalid_grant","error_description":"Invalid JWT Signature."}
on ../../main.tf line 232, in resource "google_storage_bucket" "gitlab-registry":
232: resource "google_storage_bucket" "gitlab-registry" {
Error: Post https://www.googleapis.com/storage/v1/b?alt=json&prettyPrint=false&project=hm-internal: oauth2: cannot fetch token: 400 Bad Request
Response: {"error":"invalid_grant","error_description":"Invalid JWT Signature."}
on ../../main.tf line 237, in resource "google_storage_bucket" "gitlab-pseudo":
237: resource "google_storage_bucket" "gitlab-pseudo" {
Error: Post https://www.googleapis.com/storage/v1/b?alt=json&prettyPrint=false&project=hm-internal: oauth2: cannot fetch token: 400 Bad Request
Response: {"error":"invalid_grant","error_description":"Invalid JWT Signature."}
on ../../main.tf line 242, in resource "google_storage_bucket" "gitlab-runner-cache":
242: resource "google_storage_bucket" "gitlab-runner-cache" {
github-actions commented
This issue is stale because it has been open 60 days with no activity. Remove stale label or comment or this will be closed in 7 days