Menu
URL: /apis/apps/v1/namespaces/diyclientapps/deployments
) "{"kind":"Status","apiVersion":"v1","metadata":{},"status":"Failure","message":"deployments.apps is forbidden: User \"system:serviceaccount:default:default\" cannot create deployments.apps in the namespace \"diyclientapps\"","reason":"Forbidden","details":{"group":"apps","kind":"deployments"},"code":403}
I'm getting the above error when trying to create a deployment via the Kubernetes REST API.
Why? I don't understand the error message...
This occurs on a custom Kubernetes cluster... The above worked correctly on a local Minikube instance.
I can successfully create a deployment via: kubectl run hello-minikube --image=k8s.gcr.io/echoserver:1.4 --port=8080
829
WARNING: This allows any user with read access to secrets or the ability to create a pod to access super-user credentials.
kubectl create clusterrolebinding serviceaccounts-cluster-admin \
--clusterrole=cluster-admin \
--group=system:serviceaccounts
https://kubernetes.io/docs/admin/authorization/rbac/
93
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With