Giter Site home page Giter Site logo

selectel / cert-manager-webhook-selectel Goto Github PK

View Code? Open in Web Editor NEW
16.0 16.0 14.0 6.99 MB

Selectel DNS cert-manager ACME webhook

License: Apache License 2.0

Dockerfile 1.30% Makefile 5.02% Go 81.02% Shell 6.75% Mustache 5.91%
acme cert-manager cert-manager-webhook letsencrypt selectel-dns

cert-manager-webhook-selectel's People

Contributors

6opo9a avatar alexey-gavrilov-flant avatar andrsp avatar dchudik avatar dependabot[bot] avatar dstdfx avatar nedvna avatar niksozonov avatar tarry-dvice avatar tearix avatar

Stargazers

avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar

Watchers

avatar avatar avatar avatar avatar

Forkers

dstdfx shinespb nedvna alexey-gavrilov-flant zzzorander vandud tearix romaaw andreytkachenko dchudik niksozonov dzanto andrsp allright

cert-manager-webhook-selectel's Issues

failed for volume "certs" : secret "cert-manager-webhook-selectel-webhook-tls" not found

Привет!
Пытаюсь установить согласно документации
helm install cert-manager-webhook-selectel selectel/cert-manager-webhook-selectel

Получаю ошибку: failed for volume "certs" : secret "cert-manager-webhook-selectel-webhook-tls" not found
Либо что-то лишнее, либо чего-то не хватает.

OpenAPI spec does not exist

В логах появилась такая ошибка, не могу понять как её устранить:

E0407 05:59:53.615237       1 controller.go:116] loading OpenAPI spec for "v1alpha1.acme.selectel.ru" failed with: OpenAPI spec does not exist
I0407 05:59:53.616427       1 controller.go:129] OpenAPI AggregationController: action for item v1alpha1.acme.selectel.ru: Rate Limited Requeue.

Ошибка после обновления kubernetes до v1.25

cert-manager-cainjector

E0303 15:56:01.408797       1 reconciler.go:138] "unable to update target object with new CA data" err="Operation cannot be fulfilled on apiservices.apiregistration.k8s.io \"v1alpha1.acme.selectel.ru\": the object has been modified; please apply your changes to the latest version and try again" logger="cert-manager" kind="apiservice" kind="apiservice" name="v1alpha1.acme.selectel.ru"
E0303 15:56:01.408910       1 controller.go:329] "Reconciler error" err="Operation cannot be fulfilled on apiservices.apiregistration.k8s.io \"v1alpha1.acme.selectel.ru\": the object has been modified; please apply your changes to the latest version and try again" logger="cert-manager" controller="apiservice" controllerGroup="apiregistration.k8s.io" controllerKind="APIService" APIService="v1alpha1.acme.selectel.ru" namespace="" name="v1alpha1.acme.selectel.ru" reconcileID="9c35ef13-d465-4c16-be55-ede9f0e38299"

cert-manager-webhook-selectel:

E0303 12:17:40.216416       1 errors.go:77] Post "https://10.96.0.1:443/apis/authorization.k8s.io/v1/subjectaccessreviews?timeout=10s": context canceled
E0303 12:17:40.216570       1 timeout.go:142] post-timeout activity - time-elapsed: 56.961µs, GET "/apis/acme.selectel.ru/v1alpha1" result: <nil>
E0303 12:17:44.238607       1 webhook.go:253] Failed to make webhook authorizer request: Post "https://10.96.0.1:443/apis/authorization.k8s.io/v1/subjectaccessreviews?timeout=10s": net/http: request canceled (Client.Timeout exceeded while awaiting headers)
E0303 12:17:44.238722       1 errors.go:77] Post "https://10.96.0.1:443/apis/authorization.k8s.io/v1/subjectaccessreviews?timeout=10s": net/http: request canceled (Client.Timeout exceeded while awaiting headers)
E0303 12:17:44.238920       1 webhook.go:253] Failed to make webhook authorizer request: Post "https://10.96.0.1:443/apis/authorization.k8s.io/v1/subjectaccessreviews?timeout=10s": net/http: request canceled (Client.Timeout exceeded while awaiting headers)
E0303 12:17:44.239001       1 errors.go:77] Post "https://10.96.0.1:443/apis/authorization.k8s.io/v1/subjectaccessreviews?timeout=10s": net/http: request canceled (Client.Timeout exceeded while awaiting headers)
E0303 12:17:44.387652       1 webhook.go:253] Failed to make webhook authorizer request: Post "https://10.96.0.1:443/apis/authorization.k8s.io/v1/subjectaccessreviews?timeout=10s": context canceled
E0303 12:17:44.387855       1 errors.go:77] Post "https://10.96.0.1:443/apis/authorization.k8s.io/v1/subjectaccessreviews?timeout=10s": context canceled
E0303 12:17:44.387999       1 timeout.go:142] post-timeout activity - time-elapsed: 194.956µs, GET "/apis/acme.selectel.ru/v1alpha1" result: <nil>
E0303 12:17:46.171032       1 webhook.go:253] Failed to make webhook authorizer request: Post "https://10.96.0.1:443/apis/authorization.k8s.io/v1/subjectaccessreviews?timeout=10s": context canceled
E0303 12:17:46.171108       1 errors.go:77] Post "https://10.96.0.1:443/apis/authorization.k8s.io/v1/subjectaccessreviews?timeout=10s": context canceled
E0303 12:17:46.171181       1 timeout.go:142] post-timeout activity - time-elapsed: 241.197µs, GET "/apis/acme.selectel.ru/v1alpha1" result: <nil>

cert-manager:

E0303 20:06:46.447688       1 controller.go:167] "re-queuing item due to error processing" err="load config: secret name not setup" logger="cert-manager.challenges" key="elec-top/elec-top-crt-10-340486872-4015408070"

Ошибка API для K8s 1.27

Возникает ошибка в версии кубера 1.27.3:

Failed to watch *v1beta1.FlowSchema: failed to list *v1beta1.FlowSchema: the server could not find the requested resource
Failed to watch *v1beta1.PriorityLevelConfiguration: failed to list *v1beta1.PriorityLevelConfiguration: the server could not find the requested resource

Challenge stuck in pending with "domain_not_found 0" error

После перезагрузки сервера, валится 404 ошибка при создании сертификата на сабдомен (до этого было всё ок)
Пробовал рестартовать поды cert-manager, DNS запись в панеле добавлена.

# kubectl describe challenge

Status:
  Presented:   false
  Processing:  true
  Reason:      selectel: request failed with status code 404: {domain_not_found 0 }
  State:       pending
Events:
  Type     Reason        Age                From          Message
  ----     ------        ----               ----          -------
  Normal   Started       61s                cert-manager  Challenge scheduled for processing
  Warning  PresentError  35s (x4 over 61s)  cert-manager  Error presenting challenge: selectel: request failed with status code 404: {domain_not_found 0 }

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.