You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Hi.
Is this still usable thing? I need exactly its functionality (freezing pods data volumes) and was very pleased, that something exists for it. Unfortunately it doesn't work with my new version of Kube cluster. :-(
I am new to Kubernetes and have no Go abilities, so please consider it if possible.
I installed according to README (secret, minions, apiserver, service).
Then I tried to list (or freeze) volume from apiserver pod:
# kvfctl list dokuwiki-656455b4f-5hhcg -t '<token>' -v
INFO[0000] Turn on verbose logging
Unauthorized
Apiserver says:
$ kub logs kube-volume-freezer-apiserver-846bd7d456-ndd88 -f
time="2018-01-18T12:16:52Z" level=info msg="Turn on authentication for clients"
time="2018-01-18T12:16:52Z" level=info msg="Use token to authenticate to Minions"
time="2018-01-18T12:16:52Z" level=info msg="Start listening on 0.0.0.0:8080"
time="2018-01-18T12:19:32Z" level=error msg="Handler for GET /volumes/default/dokuwiki-6564c55b4f-5hhcg returned 500 Unauthorized"
The token and authentication to freezer-apiserver seems to be OK, because when I use invalid token then apiserver doesn't print that Unauthorized line to the log.
My opinion is, that it has to use some RBAC settings (roles, rolebindings), but I don't know what.
Or, is there any other solution for volume freezing?
Thank you very much for answer.
The text was updated successfully, but these errors were encountered:
horakmar
changed the title
Doesn't work with RBAC?
Doesn't it work with RBAC?
Jan 18, 2018
Hi.
Is this still usable thing? I need exactly its functionality (freezing pods data volumes) and was very pleased, that something exists for it. Unfortunately it doesn't work with my new version of Kube cluster. :-(
I am new to Kubernetes and have no Go abilities, so please consider it if possible.
I installed according to README (secret, minions, apiserver, service).
Then I tried to list (or freeze) volume from apiserver pod:
Apiserver says:
The token and authentication to freezer-apiserver seems to be OK, because when I use invalid token then apiserver doesn't print that Unauthorized line to the log.
My opinion is, that it has to use some RBAC settings (roles, rolebindings), but I don't know what.
Or, is there any other solution for volume freezing?
Thank you very much for answer.
The text was updated successfully, but these errors were encountered: