尝试在 AKS 中部署 SecretProviderClass 时出现以下错误。 * 错误:找不到名称的资源映射:“azure-tls”命名空间:“secretProviderClass.yaml”中的“ingress-basic”:版本“secrets-store.csi.x-k8s.io/”中没有与类型“SecretProviderClass”匹配的内容v1" 确保首先安装 CRD*
apiVersion: secrets-store.csi.x-k8s.io/v1
kind: SecretProviderClass
metadata:
name: azure-tls
namespace: ingress-basic
spec:
provider: azure
secretObjects: # secretObjects defines the desired state of synced K8s secret objects
- secretName: ingress-tls-csi
type: kubernetes.io/tls
data:
- objectName: $CERT_NAME
key: tls.key
- objectName: $CERT_NAME
key: tls.crt
parameters:
usePodIdentity: "false"
useVMManagedIdentity: "true"
keyvaultName: $AKV_NAME # the name of the AKV instance
objects: |
array:
- |
objectName: $CERT_NAME
objectType: secret
tenantId: **removedintentionally**
尝试安装上面的 SecretProviderClass list 文件。
最佳答案
找到答案:
安装以下依赖项: helm 存储库添加 secret 存储 csi 驱动程序 https://kubernetes-sigs.github.io/secrets-store-csi-driver/charts helm 安装 csi-secrets-store Secrets-store-csi-driver/secrets-store-csi-driver --namespace kube-system
关于azure - "secretProviderClass.yaml": no matches for kind "SecretProviderClass" in version "secrets-store.csi.x-k8s.io/v1" ensure CRDs are installed first,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/74251008/