New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Kubernetes support? #25
Comments
Looks ok to me, thanks for your input. |
Wow!!! This looks great! Looking forward to giving it a try! |
Hmm.. I got it up and running but I'm getting errors. Something isn't working right
This is my deployment.yaml:
|
@mzac Looking at your rbac, the service account |
Ok I added it and redployed but still getting an error
|
Ah found it! This is what I had:
changed it to:
^^^ the namespace in the subject.
|
@mzac Good catch! |
Thx, now I just need to figure out how to make it watch the rest of my containers (all in different name spaces) and send me notifications! |
@mzac Yeah I think you have to create a "wide" serviceAccount in your cluster to allow that. |
@mzac This should work: apiVersion: v1
kind: ServiceAccount
metadata:
namespace: default
name: diun
---
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole
metadata:
name: diun
rules:
- apiGroups:
- ""
resources:
- pods
verbs:
- get
- watch
- list
---
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
name: diun
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: ClusterRole
name: diun
subjects:
- kind: ServiceAccount
name: diun
namespace: default |
Ok I see now. However my setup has all my different deployments in different namespaces which means I would have to use DIUN_PROVIDERS_KUBERNETES_NAMESPACES and specify all the namespaces to watch? Can a wildcard be used to tell it to watch all namespaces? |
@mzac All namespaces are watched by default if you don't set the |
Ok yes I see that now.. Got it working. I'm guessing the errors below are for my private gitlab registry, can I add the credentials? I would have to configure these environment variables?
|
@mzac Yes that's it but you have to reference the |
Maybe you can take a look at my mstmpd image ;) |
Looks interesting but I need to relay through gmail. I'm currently using https://github.com/panubo/docker-postfix however my issues seem to be related to TLS. From your docs on msmtpd I don't see how I can relay through gmail? The auth settings seem to be for the local auth? |
No it's a mstmp daemon. It acts as a relay like Postfix but less cumbersome and lightweight. Check this example to use it with gmail. |
Awesome thanks I got it working :) |
4.0.0-beta.4 can now automatically determine registry options based on image name. More info: https://github.com/crazy-max/diun/blob/v4/docs/config/regopts.md |
Have you considered adding Kubernetes as a provider? Or since a lot of kubernetes installs run on docker would you just point it to all your hosts?
The text was updated successfully, but these errors were encountered: