colossal-dentist-5939
11/09/2022, 6:14 PMfreezing-holiday-13112
11/10/2022, 9:32 PMmost-sunset-36476
11/14/2022, 4:53 PMmany-area-51777
11/15/2022, 3:24 PMfreezing-holiday-13112
11/21/2022, 6:30 PMjolly-area-75887
11/22/2022, 1:31 PMFATA[0001] Bad response statusCode [403]. Status [403 Forbidden]. Body: [baseType=error, code=Forbidden, message=<http://clusters.management.cattle.io|clusters.management.cattle.io> "test" is forbidden: User "u-v8qr9" cannot get resource "clusters" in API group "<http://management.cattle.io|management.cattle.io>" at the cluster scope: Azure does not have opinion for this non AAD user. If you are an AAD user, please set Extra:oid parameter for impersonated user in the kubeconfig] from [<https://rancher/v3/clusters/test>]
Can someone help with this?jolly-area-75887
11/22/2022, 1:32 PM│ Error: Bad response statusCode [401]. Status [401 Unauthorized]. Body: [baseType=error, code=Unauthorized, message=admission webhook "<http://rancher.cattle.io|rancher.cattle.io>" denied the request: Azure does not have opinion for this non AAD user. If you are an AAD user, please set Extra:oid parameter for impersonated user in the kubeconfig] from [<https://rancher/v3/clusters>]
plain-refrigerator-80586
12/01/2022, 8:41 AMglamorous-painting-54907
12/06/2022, 11:54 AMadorable-photographer-68517
12/07/2022, 7:03 PMgray-laptop-20554
12/12/2022, 12:04 PMagreeable-pager-80720
12/13/2022, 7:36 AMmammoth-postman-10874
12/13/2022, 8:55 AMgroup_principal_id = "azuread_group://${each.value}"
agreeable-pager-80720
12/13/2022, 8:56 AMeach.value
comes from ...?mammoth-postman-10874
12/13/2022, 8:56 AMmammoth-postman-10874
12/13/2022, 8:56 AMagreeable-pager-80720
12/13/2022, 8:56 AMagreeable-pager-80720
12/13/2022, 9:03 AMmammoth-postman-10874
12/19/2022, 11:54 AMboundless-dog-9864
12/21/2022, 2:04 PMmicroscopic-diamond-94749
01/02/2023, 1:21 PMresource "rancher2_cluster_v2" "external-cloud-provider" {
name = "external-cloud-provider"
machine_selector_config {
config = {
cloud-provider-name = "external"
}
and install a custom cloud provider (openstack cloud controller manager) via a helm chart in the terraform config? I saw examples for harvester cloud provider but that seems to be an included chart?blue-controller-9088
01/11/2023, 11:25 PMabundant-jordan-68523
01/23/2023, 2:42 PMclever-processor-78736
01/24/2023, 7:15 AMterraform-provider-rancher2
, what we're trying to understand is what changes to e.g. the rancher_cluster_v2
resource trigger drain and cordon operations. I understand that there's a couple of components involved here that may play a role in this. AFAICT we have:
1. terraform-provider-rancher2
2. In Rancher Cluster API with the Cluster API Provider OpenStack since our cloud is built ontop OpenStack
3. OpenStack
The Terraform provider might be the component in this that has the least to say in whether a instance gets recreated or cordon+drained due to a change. So on a higher level we're more or less asking: "What changes to resources in the Terraform provider triggers what operations on the instances?". Is there a deterministic way of knowing this in beforehand, is it documented somewhere? As an example, we enabled the etcd snapshot feature (to S3) with these settings in the rke_config
of a rancher_cluster_v2
in a already deployed cluster, somewhat surprising we noticed that this triggered a cordon + drain of all nodes including worker nodes. We expected this to trigger some kind of operation on the control plane nodes only. Some changes, that changes certain settings on an instance level in OpenStack might lead to a recreate VM operation, and that would be documented in OpenStack. But these more subtle changes is hard to find information on.
Any insight in this would be highly appreciated!wonderful-shampoo-61843
01/30/2023, 12:21 PMauth_config_secret_name
, how can i create this type of secret in order to deploy the cluster with that private registry ?
https://registry.terraform.io/providers/rancher/rancher2/latest/docs/resources/cluster_v2#auth_config_secret_name
Thank you !blue-controller-9088
01/30/2023, 10:41 PMlocal_cluster_auth_endpoint {
ca_certs = fileexists("ssl/ca.pem") ? file("ssl/ca.pem") : ""
enabled = true
fqdn = var.rancher_config.cluster_api_server
}
---
It does not like it, getting “Unsupported block type”.
---
Error: Unsupported block type
│
│ on main.tf line 99, in resource “rancher2_cluster_v2” “cluster”:
│ 99: local_cluster_auth_endpoint {
│
│ Blocks of type “local_cluster_auth_endpoint” are not expected here.
---square-policeman-85866
02/22/2023, 11:50 AMlimited-spoon-91973
03/10/2023, 9:24 AMrancher2_app_v2
rersource of vsphere-csi
chart or vsphere-cpi
there's error about rancher-monitoring, but it's not a subchart of the main chart....
╷
│ Error: [ERROR] installing App V2: helm upgrade --install=true --namespace=cattle-monitoring-system --no-hooks=true --timeout=10m0s --values=/home/shell/helm/values-rancher-monitoring-crd-101.0.0-up19.0.3.yaml --version=101.0.0+up19.0.3 --wait=true rancher-monitoring-crd /home/shell/helm/rancher-monitoring-crd-101.0.0-up19.0.3.tgz
│ Error: UPGRADE FAILED: release: already exists
│
│
│ with rancher2_app_v2.vsphere_cpi,
│ on <http://main.tf|main.tf> line 31, in resource "rancher2_app_v2" "vsphere_cpi":
│ 31: resource "rancher2_app_v2" "vsphere_cpi" {
│
╵
Is this expected result or should I open a issue? Version of provider: "~> 1.24" and Chart: "101.0.0+up2.5.1-rancher1"adventurous-magazine-13224
03/14/2023, 2:14 PMrancher2_cluster_v2
, and am trying to configure an ordered list of registry mirrors using the below. I want to use my custom mirror, and then fallback to docker.io if it goes down. Terraform is ordering this endpoints list, and putting docker.io at the top of the mirror list, so my custom mirror is never used 😞 Has anyone gotten around this? Or could I omit docker.io from this list and it'd fall back to that by default?
registries {
mirrors {
hostname = "<http://docker.io|docker.io>"
endpoints = [
"<https://my-pullthrough-proxy.example.com>",
"<https://docker.io>"
]
}
}
best-address-42882
03/14/2023, 6:43 PMbest-address-42882
03/14/2023, 6:43 PMadventurous-magazine-13224
03/15/2023, 9:40 AMbest-address-42882
03/15/2023, 3:03 PM