This project covers two use cases for RBAC within a Kubernetes Engine cluster. First, assigning different permissions to user personas. Second, granting limited API access to an application running within your cluster. Since RBAC's flexibility can occasionally result in complex rules, you will also perform common steps for troubleshooting RBAC as a part of the second scenario.
License: Apache License 2.0
Hello,
I am trying to execute the make create command however the installation continually hangs at the compute instances creation step for bastion, auditor and owner. The output is as follows:
module.owner_instance.google_compute_instance.instance: Still creating... (16m10s elapsed)
module.auditor_instance.google_compute_instance.instance: Still creating... (16m10s elapsed)
module.bastion.google_compute_instance.instance: Still creating... (16m10s elapsed)
I am running this from my local machine against a cluster on GKE.
The project setting are set up as specified, auth login is validated and apis enabled.
Any ideas?
Best
Chris
@kaariger I removed Jenkins CI/CD since I am unable to debug why we cannot merge code.
This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
These updates have all been created already. Click a checkbox below to force a retry/rebase of any.
images/pod-labeler/cloudbuild.yaml
images/pod-labeler/Dockerfile
python 2.7-stretch
terraform/main.tf
terraform/modules/firewall/versions.tf
hashicorp/terraform >= 0.12terraform/modules/instance/versions.tf
hashicorp/terraform >= 0.12terraform/modules/network/versions.tf
hashicorp/terraform >= 0.12terraform/provider.tf
google ~> 2.17.0null ~> 2.1.2random ~> 2.1.2template ~> 2.1.2terraform/versions.tf
hashicorp/terraform >= 0.12
In doing the terraform setup and following the tutorial on Cloud Shell, when I attempt to follow Scenario 2 and run the pod labeler, every version of the yaml is able to get the Running state successfully and have this error in the logs:
aprindle@gke-tutorial-admin:~$ kubectl logs -l app=pod-labeler
/usr/local/lib/python2.7/site-packages/pkg_resources/__init__.py:1235: UserWarning: /tmp is writable by group/others and vulnerable to attack when used with get_resource_filename. Consider a more secure location (set with .set_extraction_path or the PYTHON_EGG_CACHE environment variable).
warnings.warn(msg, UserWarning)
Attempting to list pods
2019-01-30 20:38:49,336 WARNING Retrying (Retry(total=2, connect=None, read=None, redirect=None, status=None)) after connection broken by 'NewConnectionError('<urllib3.connection.VerifiedHTTPSConnection object at 0x7f024b73e290>: Failed to establish a new connection: [Errno 110] Connection timed out',)': /api/v1/namespaces/default/pods?watch=False
aprindle@gke-tutorial-admin:~$ kubectl logs -l app=pod-labeler
/usr/local/lib/python2.7/site-packages/pkg_resources/__init__.py:1235: UserWarning: /tmp is writable by group/others and vulnerable to attack when used with get_resource_filename. Consider a more secure location (set with .set_extraction_path or the PYTHON_EGG_CACHE environment variable).
warnings.warn(msg, UserWarning)
Attempting to list pods
2019-01-30 20:38:49,336 WARNING Retrying (Retry(total=2, connect=None, read=None, redirect=None, status=None)) after connection broken by 'NewConnectionError('<urllib3.connection.VerifiedHTTPSConnection object at 0x7f024b73e290>: Failed to establish a new connection: [Errno 110] Connection timed out',)': /api/v1/namespaces/default/pods?watch=False
I expected the initial deployments to fail as described in the scenario and then have a successful run in the end.
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
Django
The Web framework for perfectionists with deadlines.
Laravel
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft
Open source projects and samples from Microsoft.
Google
Google โค๏ธ Open Source for everyone.
Alibaba
Alibaba Open Source for everyone
D3
Data-Driven Documents codes.
Tencent
China tencent open source team.