New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[validation] failurePolicy makes the control-plane unstable #4468
Comments
Also reproducing with Gloo 1.8.0. Installation breaks:
control plane pods remain in crashed state:
|
Validation Webhook FailurePolicy: https://kubernetes.io/docs/reference/access-authn-authz/extensible-admission-controllers/#failure-policy
|
logs:
|
Here's a sequence of events that can possibly cause this failure:
Bunch of options to fix it depending upon the UX we want. One possible way is to have a job scheduled via Helm to create default CRs which will wait for CRD definition, webhook config and webhook service to be ready in this order before creating the CRs. |
@nrjpoddar this can also be a basis for a CRD upgrade solution, as mentioned here for gloo-mesh. |
Zendesk ticket #492 has been linked to this issue. |
Zendesk ticket #492 has been linked to this issue. |
PR that should help: #6017 |
Describe the bug
The webhook's failurePolicy=Fail is unstable.
To Reproduce
Steps to reproduce the behavior:
The text was updated successfully, but these errors were encountered: