search

GoogleCloudPlatform / berglas

A tool for managing secrets on Google Cloud
https://cloud.google.com/secret-manager
Apache License 2.0
1.24k stars 96 forks source link

Kubernetes example doesn't work on 1.16 #128

Closed nklmilojevic closed 4 years ago

nklmilojevic commented 4 years ago

Hi Seth and others,

First of all thanks for the great tool. I'm trying to integrate it into our k8s workflow (with secrets manager) but I'm failing to do so. I fixed the deployment (should use apps/v1 for 1.16) but when I'm trying the envserver example I get this in pod log:

Events:
  Type     Reason          Age              From                                                          Message
  ----     ------          ----             ----                                                          -------
  Normal   Scheduled       8s               default-scheduler                                             Successfully assigned default/envserver-64f497d584-v5hbl to gke-play-dev-cluster-play-dev-cluster-eeb36792-97tg
  Normal   Pulling         7s               kubelet, gke-play-dev-cluster-play-dev-cluster-eeb36792-97tg  Pulling image "us-docker.pkg.dev/berglas/berglas/berglas:latest"
  Warning  Failed          6s               kubelet, gke-play-dev-cluster-play-dev-cluster-eeb36792-97tg  Failed to pull image "us-docker.pkg.dev/berglas/berglas/berglas:latest": rpc error: code = Unknown desc = Error response from daemon: Get https://us-docker.pkg.dev/v2/berglas/berglas/berglas/manifests/latest: denied: Permission "artifactregistry.repositories.downloadArtifacts" denied on resource "projects/berglas/locations/us/repositories/berglas" (or it may not exist)
  Warning  Failed          6s               kubelet, gke-play-dev-cluster-play-dev-cluster-eeb36792-97tg  Error: ErrImagePull
  Normal   SandboxChanged  5s               kubelet, gke-play-dev-cluster-play-dev-cluster-eeb36792-97tg  Pod sandbox changed, it will be killed and re-created.
  Normal   BackOff         3s (x3 over 4s)  kubelet, gke-play-dev-cluster-play-dev-cluster-eeb36792-97tg  Back-off pulling image "us-docker.pkg.dev/berglas/berglas/berglas:latest"
  Warning  Failed          3s (x3 over 4s)  kubelet, gke-play-dev-cluster-play-dev-cluster-eeb36792-97tg  Error: ImagePullBackOff

Do you have any idea why this is happening?

nklmilojevic commented 4 years ago

Ok, found out that it used incorrect url for docker image. I have submitted a PR:

https://github.com/GoogleCloudPlatform/berglas/pull/129

github-actions[bot] commented 4 years ago

This issue has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs.