suii2210 opened a new pull request, #59803: URL: https://github.com/apache/airflow/pull/59803
This PR fixes a configuration issue in the official `docker-compose.yaml` when using the `CeleryExecutor`. #### Root cause The docker-compose configuration does not define a shared `AIRFLOW__API_AUTH__JWT_SECRET`. As a result, different Airflow services (API server, webserver, scheduler, and Celery worker) may generate or assume different JWT secrets, causing JWT signature verification to fail when the worker communicates with the API. #### Solution Define a shared default value for `AIRFLOW__API_AUTH__JWT_SECRET` in the common docker-compose environment, while still allowing users to override it via an environment variable. This ensures consistent JWT signing and verification across all Airflow services in the compose stack. #### Testing - Reproduced locally using the official docker-compose setup with Airflow 3.1.x - Triggering a DAG fails before this change with a JWT authentication error - Triggering the same DAG succeeds after defining the shared JWT secret This change is limited to the docker-compose configuration and does not affect core Airflow code or non-Docker deployments. closes: #59373 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
