Troubleshooting deployment issues with App Connect Designer

Review this information to help resolve issues while deploying App Connect Designer.

An attempt to access or save a flow results in a Failed to retrieve flows message in App Connect Designer

When you try to access a flow or an auto-save is attempted, you might see the following message:

Failed to retrieve flows
There was a problem retrieving your flows

Try to resolve this issue by checking whether the problem is certificate-related. To do so, examine the logs in the pod named designerName-fda-xxxxxx-yyyy (for example, des-01-quickstart-fda-7b656dfbbf-rpnkp), where designerName is the metadata.name value that defines the name of the Designer instance in the custom resource (CR), and xxxxxx and yyyy are generated sets of characters.

  1. Check for the pod names for the Designer instance by running the following command.
    oc get pod -o name -l app.kubernetes.io/name=designerName -n namespaceName
    For example:
    oc get pod -o name -l app.kubernetes.io/name=des-01-quickstart -n ace-test
    The designerName-fda-xxxxxx-yyyy pod contains two containers that are named as follows:
    • designerName-fda (for example, des-01-quickstart-fda)
    • designerName-proxy (for example, des-01-quickstart-proxy)
  2. View the log for the designerName-fda container.
    oc logs -f podName -c containerName
    For example:
    oc logs -f des-01-quickstart-fda-7b656dfbbf-rpnkp -c des-01-quickstart-fda
    Check the output for the following type of error:
    ERROR Failed to get document from flows DB for user: default [flowDB.js:1]
dataObj: "{\"message\":\"The connection failed because the SSL certificate is not valid. To use a self-signed certificate, set the `disableSslVerification` parameter in the constructor options.\",\"name\":\"Error\",\"stack\":\"Error: The connection failed because the SSL certificate is not valid. To use a self-signed certificate, set the `disableSslVerification` parameter in the constructor options.\\

    If you see this error, there might be a mismatch between the certificates that are loaded by the microservices and by the CouchDB database that stores flow definition artifacts in the container’s file system. This mismatch can occur if the certificates have been updated or rotated. CouchDB automatically pick ups any new certificates, but the microservices need to be restarted to pick up new certificates.

  3. To restart the microservices to pick up any new certificates, run the following commands in a bash shell (but not ksh).
    1. If necessary, switch to the namespace where the Designer instance is deployed.
      oc project designerNamespace
    2. Run the following command.
      
oc get deployments -l appconnect.ibm.com/kind=DesignerAuthoring,app.kubernetes.io/name=designerName --no-headers |  awk '{print $1 }' |  xargs oc patch deploy $0 -p "{\"spec\":{\"template\":{\"metadata\":{\"annotations\":{\"appconnect-restart\":\"`date +'%s'`\"}}}}}"
      For example:
      
oc get deployments -l appconnect.ibm.com/kind=DesignerAuthoring,app.kubernetes.io/name=des-01-quickstart --no-headers |  awk '{print $1 }' |  xargs oc patch deploy $0 -p "{\"spec\":{\"template\":{\"metadata\":{\"annotations\":{\"appconnect-restart\":\"`date +'%s'`\"}}}}}"

      This command triggers a rolling restart of all the pods (apart from the CouchDB pods) that are used by the Designer instance.

  4. After all the pods have restarted, try to access the Designer UI.
  5. If the issue is not resolved, open a case with IBM Support as described in Contacting IBM.

An App Connect Designer deployment remains in a Pending state with the message Connector Auth Service deployment is being created

Applicable to App Connect Designer 12.0.4.0-r2 or earlier in an IBM App Connect Operator 5.1.x or later environment

While attempting to create an instance of App Connect Designer within a new or an upgraded IBM App Connect Operator 5.1.x or later environment, the deployment might fail to complete with the following message:

Connector Auth Service deployment is being created

This message is typically displayed if you are trying to create an App Connect Designer instance at a supported 12.0.4.0-r2 or earlier version. For example, if you are using the Red Hat® OpenShift® web console and access the Details tab for the Designer instance, you might see this message in the Conditions section, with an associated Type value of Pending.

Example of the Pending status for an App Connect Designer instance

This error is expected to occur if an Operator for Apache CouchDB is required, but cannot be found. For 12.0.4.0-r2 or earlier Designer instances, the Operator for Apache CouchDB provides the CouchDB storage capability that App Connect Designer requires. In IBM App Connect Operator 5.1.x or later, the dependency on the Operator for Apache CouchDB is removed for 12.0.5.0-r2 or later Designer instances, and the IBM App Connect Operator instead manages CouchDB storage. For a new IBM App Connect Operator 5.1.x or later installation, the Operator for Apache CouchDB is therefore no longer installed as a dependency, but is required if you want to create older Designer instances at 12.0.4.0-r2 or earlier versions. Similarly, if you upgraded to IBM App Connect Operator 5.1.x or later, the Operator for Apache CouchDB will still be needed to create 12.0.4.0-r2 or earlier Designer instances. However, this Operator might have been manually removed because it was deemed no longer necessary after all existing Designer instances were upgraded.

To resolve this issue, install (or reinstall) the Operator for Apache CouchDB in the namespace where the IBM App Connect Operator is installed.

Applicable to an App Connect Designer instance in an IBM App Connect Operator 2.0.0 - 4.2.0 environment

While attempting to create an instance of App Connect Designer, the deployment might fail to complete with the following message:

Connector Auth Service deployment is being created

This error is expected to occur if IBM App Connect Operator 2.0.0 or later is installed cluster wide (that is, into all namespaces in your cluster), and the Operator for Apache CouchDB, which is one of the dependent Operators, is at version 2.0.0.

To resolve this issue, Operator for Apache CouchDB 2.0.1 (or later) is required.

  1. To check the CouchDB version from the Red Hat OpenShift web console, navigate to Operators > Installed Operators to display all the installed Operators and their corresponding versions in the current namespace. Alternatively, run the following command:
    oc get csv | grep couchdb
  2. Take either of these actions:
    • Switch to a namespace-scoped installation.

      You can do so by uninstalling your cluster-wide installation of the IBM App Connect Operator (and its dependent Operators) and then reinstalling into a specific single namespace.

    • Retain your cluster-wide installation of the IBM App Connect Operator by switching to a supported CouchDB version.
      You can do so by uninstalling Operator for Apache CouchDB 2.0.0. Then compete either of the following steps:
      • Manually install Operator for Apache CouchDB 1.4.x by selecting the v1.4 channel.
        Note: This option is supported only if using Red Hat OpenShift 4.6 or 4.7.
      • Manually install Operator for Apache CouchDB 2.0.1 (or later) by selecting the v2.1 (or later) channel.

CouchDB storage class not honored in a deployed App Connect Designer 12.0.5.0-r1-lts or 12.0.5.0-r2 instance

When creating an App Connect Designer instance, you are required to choose a storage class (spec.couchdb.storage.class) if the storage type (spec.couchdb.storage.type) for CouchDB is set to persistent-claim.

If a Designer instance is created with a spec.version value that resolves to 12.0.5.0-r1-lts or 12.0.5.0-r2, your specified storage class in the custom resource (CR) is not honored and the deployed instance instead uses the cluster's default storage class. This issue is resolved in 12.0.5.0-r3 or later, but if you upgrade from 12.0.5.0-r1-lts or 12.0.5.0-r2 to 12.0.5.0-r3 or later, the original default storage class will still be used with the Designer instance. To switch to the actual storage class that is defined in the CR, you must delete and then re-create your instance. (You will need to export any saved flows before you delete the instance, and then import the flows after re-creating the instance.)

For more information, see App Connect Designer reference: Creating an instance and Exporting and importing flows.