[英]AWS CodeBuild kubectl apply -f unable to recognize : Unauthorized
构建过程因以下错误而失败:
[Container] 2019/12/12 08:07:41 Running command kubectl apply -f simple_jwt_api.yml
unable to recognize "simple_jwt_api.yml": Unauthorized
unable to recognize "simple_jwt_api.yml": Unauthorized
[Container] 2019/12/12 08:07:43 Command did not exit successfully kubectl apply -f simple_jwt_api.yml exit status 1
[Container] 2019/12/12 08:07:43 Phase complete: POST_BUILD State: FAILED
[Container] 2019/12/12 08:07:43 Phase context status code: COMMAND_EXECUTION_ERROR Message: Error while executing command: kubectl apply -f simple_jwt_api.yml. Reason: exit status 1
simple_jwt_api.yml 文件: simple_jwt_api.yml
构建脚本文件: buildspec.yml
构建日志:
[Container] 2019/12/12 08:07:41 Running command kubectl apply -f simple_jwt_api.yml
unable to recognize "simple_jwt_api.yml": Unauthorized
unable to recognize "simple_jwt_api.yml": Unauthorized
[Container] 2019/12/12 08:07:43 Command did not exit successfully kubectl apply -f simple_jwt_api.yml exit status 1
[Container] 2019/12/12 08:07:43 Phase complete: POST_BUILD State: FAILED
[Container] 2019/12/12 08:07:43 Phase context status code: COMMAND_EXECUTION_ERROR Message: Error while executing command: kubectl apply -f simple_jwt_api.yml. Reason: exit status 1
[Container] 2019/12/12 08:07:43 Expanding base directory path: .
[Container] 2019/12/12 08:07:43 Assembling file list
[Container] 2019/12/12 08:07:43 Expanding .
[Container] 2019/12/12 08:07:43 Expanding file paths for base directory .
[Container] 2019/12/12 08:07:43 Assembling file list
[Container] 2019/12/12 08:07:43 Expanding build.json
[Container] 2019/12/12 08:07:43 Skipping invalid file path build.json
[Container] 2019/12/12 08:07:43 Phase complete: UPLOAD_ARTIFACTS State: FAILED
[Container] 2019/12/12 08:07:43 Phase context status code: CLIENT_ERROR Message: no matching artifact paths found
Buildspec 看起来不错,所以我怀疑您的 CodeBuild 服务角色在其 ARN (/service-role/) 中有一个“路径”,已知这会在使用 iam 身份验证器对 EKS 进行身份验证时导致问题。
您能否在另一个可能有帮助的线程上查看我的这个答案:
还要检查“身份验证器”EKS 控制平面日志,它可能会提供有关“未授权”错误的一些线索:
我遇到了同样的问题。 但是,对我来说,原因是文档“/tmp/aws-auth-patch.yml”
我没有正确添加角色。
第一次,我将它添加到 mapUsers 而不是 mapRoles。
其次,我忘了更换 ACCOUNT_ID
第三次,我用错了格式。
它应该是
然后我得到了正确的结果。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.