-
Notifications
You must be signed in to change notification settings - Fork 440
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
operator TLS secret not found%!(EXTRA string=secrets "operator-tls" not found) #538
Comments
@wangjunjack can you restart the Operator pod once and share the logs |
I0319 08:54:46.314441 1 main.go:72] Starting MinIO Operator I0319 08:54:47.018108 1 main.go:139] caBundle on CRD updated I0319 08:54:47.019008 1 main-controller.go:251] Setting up event handlers I0319 08:54:47.019125 1 main-controller.go:635] Starting Tenant controller I0319 08:54:47.019143 1 main-controller.go:638] Waiting for informer caches to sync I0319 08:54:47.049571 1 main-controller.go:599] operator TLS secret not found%!(EXTRA string=secrets "operator-tls" not found) I0319 08:54:47.096629 1 csr.go:217] Start polling for certificate of csr/operator-minio-operator-csr, every 5s, timeout after 20m0s I0319 08:54:47.419474 1 main-controller.go:643] Starting workers |
@dvaldivia when i Execute “kubectl minio init”, that will be "operator TLS secret not found%!(EXTRA string=secrets "operator-tls" not found)" |
when i create Minio Tenant , it will be`E0319 09:00:25.324901 1 main-controller.go:721] error syncing 'minio-tenant-1/tenant1': secrets "operator-tls" not found E0319 09:00:35.226868 1 main-controller.go:721] error syncing 'minio-tenant-1/tenant1': secrets "operator-tls" not found` the command is
|
@wangjunjack are you able to see any CSR in your cluster from operator? if the secret is missing it means the Certificate Signing Request never succeeded and the TLS certificate for operator didn't install |
@dvaldivia yes, i can see it. |
@wangjunjack and still the operator is not starting? |
@dvaldivia the operator is started, but the log of "operator TLS secret not found%!(EXTRA string=secrets "operator-tls" not found)" |
@wangjunjack did you by any chance install operator to a custom namespace? What are the logs of the operator after restart? does it says soming like " polling for certificate" ? |
@dvaldivia |
can you delete the CSR (certificate signging request) and reinstall operator this way
|
@dvaldivia i have sloved problem. thank you |
@wangjunjack how did you solved it? was it the reinstall? or a missing cluster role permission? |
@dvaldivia thank you for your help |
How did you add the config? I read here https://docs.min.io/minio/k8s/deployment/deploy-minio-operator.html#kubernetes-tls-certificate-api that I need to check |
I am facing this same issue with this operator deployed via OLM on OpenShift, the proposed solution doesn't sound applicable. Should be noted on OpenShift when you deploy the operator via OLM for "all namespaces", it installs the operator into the
Issue 2:
|
@ctml91 do you see any logs showing an error writing a secret to the tenant namespace? What version of the operator do you have? |
Thanks for the lightning quick reply. Updated original comment with specific error, we installed 4.0.9. |
@ctml91 that's a little bit old, can you try the 4.4.9re elase from oeprator hub? https://operatorhub.io/operator/minio-operator |
This is the latest available from OpenShifts integrated operator hub. Is it possible to publish the updated versions to their repo? https://github.com/redhat-openshift-ecosystem/certified-operators |
Expected Behavior
Current Behavior
Possible Solution
Steps to Reproduce (for bugs)
Context
Regression
Your Environment
minio-operator
):): * Server type and version: * Operating System and version (`uname -a`): * Link to your deployment file:
The text was updated successfully, but these errors were encountered: