Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
Need a deployment config for kubernetes with RBAC
See original GitHub issueLinkerd cannot retrieve endpoint list when deployed on kubernetes 1.6 using deployment configs as instructed https://linkerd.io/getting-started/k8s/ or https://linkerd.io/getting-started/k8s-daemonset/. This happends due to RBAC being turned on by default for kubernetes 1.6.
I circuvmented RBAC by permitting everything to default ServiceAccount used to run linkerd pod (see below).
We need a deployment config for kubernetes with RBAC with fine-grained Role (or ClusterRole? I am not an expert on Kubernetes).
If anyone needs the stack trace thown by linkerd, it is here #1344.
---
apiVersion: rbac.authorization.k8s.io/v1beta1
kind: RoleBinding
metadata:
name: linkerd
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: Role
name: linkerd-allow-all
subjects:
- kind: ServiceAccount
name: default
namespace: default
---
kind: Role
apiVersion: rbac.authorization.k8s.io/v1beta1
metadata:
name: linkerd-allow-all
rules:
- apiGroups: [""]
resources:
- '*'
verbs:
- '*'
Issue Analytics
- State:
- Created 6 years ago
- Comments:5 (3 by maintainers)
Top Results From Across the Web
Top Related Medium Post
Top Related StackOverflow Question
Troubleshoot Live Code
Top Related Reddit Thread
Top Related Hackernoon Post
Top Related Tweet
Top Related Dev.to Post
Top Related Hashnode Post
I believe this is resolved by https://buoyant.io/2017/07/24/using-linkerd-kubernetes-rbac/
@ethanrubio yeah I think you can do this without granting cluster-admin access. We’re working on adding example RBAC configs (see configs at https://github.com/linkerd/linkerd-examples/pull/165 for granting namerd access to the third party resource).