-
Notifications
You must be signed in to change notification settings - Fork 17
Configured service account doesn't have access to execute GET request #11
Comments
@dzianis-shkindzerau thanks for the detailed issue. I just confirmed that following your steps exactly on my local minishift instance works as expected. Just to get an idea of what could be wrong, could you please run this $ oc describe policyBindings :default -n scdf what you should see is this: in addition, could you perhaps confirm that the |
@donovanmuller thanks for quick answer
Yes. I did. |
@dzianis-shkindzerau yes, that looks fine. I'll have to try spin up a cluster using the Ansible playbooks and try and reproduce. |
Oh yes, one more thing. spring-cloud-deployer_commitId 4d17be98738a6790addeb1849344de8e04f78b56 |
@dzianis-shkindzerau I just spun up an OpenShift Origin 1.3.1 cluster with the openshiift-ansible ( I used your commands exactly as described and in the same order... and it worked as expected 🤔. As per your #11 (comment), are you trying to install the If that doesn't help, the only other way I can think of helping you is to allow you temporary access to the cluster I just spun up and you can poke around and try find out what the diff is? If you would like to try that you can DM me at @donovancmuller and I'll give you the connection details... |
@donovanmuller thanks for the help Now it works. It was my mistake with properties configuration. I deleted the next values Thanks for great job with the SCDF on Openshift and good luck in the work! |
When I apply the
scdf-ephemeral-datasources-template.yaml
template instead of a project namedscdf
, the failure happens in SCDF logs (full log: log.txt):2016-12-23 13:48:40.163 WARN 1 --- [ main] i.f.s.cloud.kubernetes.StandardPodUtils : Failed to get pod with name:[scdf-ephemeral-2-evs6k]. You should look into this if things aren't working as you expect. Are you missing serviceaccount permissions?
io.fabric8.kubernetes.client.KubernetesClientException: Failure executing: GET at: https://xxxxxxx:8443/api/v1/namespaces/scdf/pods/scdf-ephemeral-2-evs6k. Message: Forbidden!Configured service account doesn't have access. Service account may have been revoked..
...
I`ve deployed openshift cluster in a cloud using ansible scripts (1 master, 5 nodes) and logged in on to a master.
My steps (according to instructions ):
$ openshift version
openshift v1.3.0
kubernetes v1.3.0+52492b4
etcd 2.3.0+git
$ oc status
In project scdf on server https://xxxxxx:8443
svc/mysql - 172.30.204.120:3306 -> mysql
dc/mysql deploys docker.io/library/mysql:5.6
deployment #1 deployed 56 minutes ago - 1 pod
svc/redis - 172.30.241.168:6379 -> redis
dc/redis deploys docker.io/library/redis:3-alpine
deployment #1 deployed 56 minutes ago - 1 pod
http://scdf-ephemeral-scdf.router.default.svc.cluster.local to pod port http (svc/scdf-ephemeral)
dc/scdf-ephemeral deploys docker.io/donovanmuller/spring-cloud-dataflow-server-openshift:1.1.0.RELEASE
deployment #2 failed 25 minutes ago: caused by a config change
deployment #1 failed 56 minutes ago: caused by a config change
Any ideas?
The text was updated successfully, but these errors were encountered: