Skip to content
This repository has been archived by the owner on Apr 24, 2018. It is now read-only.

Does sidecar work with RBAC enabled? #11

Open
JohnLindahlTech opened this issue Dec 20, 2017 · 1 comment
Open

Does sidecar work with RBAC enabled? #11

JohnLindahlTech opened this issue Dec 20, 2017 · 1 comment

Comments

@JohnLindahlTech
Copy link

I am trying to use the instructions in a Google Kubernetes Engine (1.8.4-gke.1) without legacy auth. But the sidecar keeps crashing on me with the following error:

Error from server (Forbidden): pods "redis-0" is forbidden: User "system:serviceaccount:myNameSpace:default" cannot get pods in the namespace "myNameSpace": Unknown user "system:serviceaccount:myNameSpace:default"

Is there a known way of how to get this error resolved?
@JohnLindahlTech
Copy link
Author

JohnLindahlTech commented Dec 20, 2017
edited
Loading

I got something working, but I am not 100% aware of the consequences:

kubectl create rolebinding myNameSpace-edit --clusterrole=edit --serviceaccount=myNameSpace:default --namespace=myNameSpace

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@JohnLindahlTech