You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
What steps did you take and what happened:
I want to make a backup of my cluster with velero and restic. with velero i can skip the certificate check for access the S3 Bucket. But restic throw me a validation error:
Error error="restic repository is not ready: error running command=restic init --repo=s3:https://os-s3.domain.de/velero-2c2fe3cc/restic/default --password-file=/tmp/velero-restic-credentials-default157019853 --cache-dir=/scratch/.cache/restic, stdout=, stderr=Fatal: create repository at s3:https://os-s3.domain.de/velero-2c2fe3cc/restic/default failed: client.BucketExists: Get https://os-s3.domain.de/velero-2c2fe3cc/?location=: x509: certificate signed by unknown authority
What did you expect to happen:
I would like to be able to configure resticinsecureSkipTLSVerify during the velero installation.
The output of the following commands will help us better understand what's going on:
hey @macevil, it doesn't look like restic itself supports this option, so you'd need to file an enhancement request or PR in that repo to get that implemented before Velero could make use of it.
Alternately, we have recently merged #2353, which will allow you to use a custom CA bundle with Velero. That does flow through to restic.
I'm going to close this issue out for now as it's not actionable for Velero, but feel free to reach out again as needed.
What steps did you take and what happened:
I want to make a backup of my cluster with
velero
andrestic
. withvelero
i can skip the certificate check for access the S3 Bucket. Butrestic
throw me a validation error:Command
velero install --use-restic --provider aws --bucket velero-2c2fe3cc --secret-file ./credentials-velero --use-volume-snapshots=false --backup-location-config region=default,s3ForcePathStyle="true",s3Url=https://os-s3.domain.de,insecureSkipTLSVerify=true --plugins velero/velero-plugin-for-aws:v1.0.1 --image velero/velero:v1.3.0
Error
error="restic repository is not ready: error running command=restic init --repo=s3:https://os-s3.domain.de/velero-2c2fe3cc/restic/default --password-file=/tmp/velero-restic-credentials-default157019853 --cache-dir=/scratch/.cache/restic, stdout=, stderr=Fatal: create repository at s3:https://os-s3.domain.de/velero-2c2fe3cc/restic/default failed: client.BucketExists: Get https://os-s3.domain.de/velero-2c2fe3cc/?location=: x509: certificate signed by unknown authority
What did you expect to happen:
I would like to be able to configure
restic
insecureSkipTLSVerify during thevelero
installation.The output of the following commands will help us better understand what's going on:
velero backup logs pg-backup
Environment:
velero version
):velero client config get features
):features: <NOT SET>
kubectl version
):k8s 1.15.5
PKS 1.6.1-build.6
/etc/os-release
):The text was updated successfully, but these errors were encountered: