Stack Overflow
Stack Overflow

Questions tagged [kube-apiserver]

The main implementation of a Kubernetes API server is kube-apiserver. kube-apiserver is designed to scale horizontally — that is, it scales by deploying more instances. You can run several instances of kube-apiserver and balance traffic between those instances.

The kube-apiserver validates and configures data for the API objects which include pods, services, replicationcontrollers, and others.

The API Server services REST operations and provides the frontend to the cluster's shared state through which all other components interact.

132 questions
1
vote
0 answers

kubectl logs command gives error if worker node has IPv6 address

I have a 3-node cluster (1 master + 2 worker). I am exploring dual-stack capabilities of Kubernetes (version 1.21). I have used kubeadm to initialize this cluster. To begin with, I see IPv4 address of nodes in the this command : command - kubectl…
darpan malhotra
  • 11
  • 1
1
vote
0 answers

Kubernetes source docker files

Trying to understand how a cluster is being setup and how different components of the cluster work together, I am looking into different Kubernetes yaml files in particular the kubeapi-server. There I can see that the image is coming…
Ramin Toussi
  • 97
  • 1
  • 11
1
vote
1 answer

How to create custom objects in Kubernetes?

I am using Velero to create and backup and restore, Velero has controllers which get triggered when I can create the custom objects. import veleroApi "github.com/vmware-tanzu/velero/pkg/apis/velero/v1" restoreObj := veleroApi.Restore{ TypeMeta:…
Vishrant
  • 15,456
  • 11
  • 71
  • 120
1
vote
1 answer

Is there documentation regarding exceptions thrown by kubernetes api server, it would be good to have in java but any language will do

We have a use case to monitor kubernetes clusters and I am trying to find the list of exceptions thrown by kubernetes to reflect the status of the k8s server (in a namespace) while trying to submit a job on the UI. Example: if k8s server throws…
chandu
  • 123
  • 1
  • 6
1
vote
1 answer

kubelet service can't access kube-apiserver at port 6443 with https due to error net/http: TLS handshake timeout

I am provisioning a workload cluster with one control plane node and one worker node on top of openstack via Cluster API. However the kubernetes control plane failed to start properly in the control plane node. I can see the kube-apiserver keeps…
Wenyan XIE
  • 46
  • 1
  • 5
1
vote
0 answers

Kubernetes API return 401 for default token

We deploy new Kubernetes cluster, when I was trying to troubleshoot the things, I find the link to test the API is working fine or not. Access Cluster. When I ran same code snippet, it failed with 401. [devops@kubemaster01 ~]$ APISERVER=$(kubectl…
Nilesh
  • 20,521
  • 16
  • 92
  • 148
1
vote
2 answers

Add apiserver extraArgs/extraVolumes in a live cluster

I have a Kubernetes cluster 1.17, and I want to add some extraArgs and extraVolumes (like in https://kubernetes.io/docs/setup/production-environment/tools/kubeadm/control-plane-flags/) in the apiserver. Usually, I update the manifest file…
Antoine
  • 310
  • 1
  • 5
  • 14
1
vote
2 answers

Can I getting the ACCESS MODES supported by storageclasses.storage.k8s.io?

For example I want to create a pvc with RWX ACCESS_MODE and can I know in advance if default sorageclasses supports RWX?
Anur Sakurakouji
  • 17
  • 3
1
vote
1 answer

Kubernetes API server filtering by field - in request time

I'm trying to get all the secrets in the cluster of type helm.sh/release.v1: $ curl -X GET $APISERVER/api/v1/secrets --header "Authorization: Bearer $TOKEN" --insecure { "kind": "SecretList", "apiVersion": "v1", "metadata": { "selfLink":…
ItayB
  • 10,377
  • 9
  • 50
  • 77
1
vote
0 answers

Cant start Kubernetes cluster. etcd and api-server errors

I've got a broken kubernetes cluster as heritage and now need to start it somehow. I don't know how it was actually created, but suppose that it was done via kubeadm. So, by kubeadm alpha certs renew all certificates were renewed and I made one node…
Andrey
  • 11
  • 3
1
vote
2 answers

Kubernetes OIDC: No valid group mapping

I have the problem that I can log on to my dashboard via OIDC, but then the oidc group information is not mapped correctly and I cannot access the corresponding resources. Basic setup K8s version: 1.19.0 K8s setup: 1 master + 2 worker nodes Based…
ZPascal
  • 323
  • 2
  • 4
  • 14
1
vote
0 answers

How to implement a K8S proxy watcher api-server?

I need to create a K8S proxy watcher api-server, it receives list requests (for some k8s resources) with watch=true from clients, and proxy requests to the real upstream K8S API-Server, then receives responses from upstream continuously and send…
Yicheng Liu
  • 11
  • 1
1
vote
2 answers

forbidden: User , "code": 403 error while accessing kube-apiserver using curl

Kubernetes version : v1.19.0 I have created a user and performed clusterrolebinding with a role cluster-admin. [root@project1-master ~]# kubectl describe clusterrole cluster-admin Name: cluster-admin Labels: …
confused genius
  • 2,876
  • 2
  • 16
  • 29
1
vote
1 answer

Expose kube-apiserver with additional IP address

I setup a k8s cluster using kubeadm init on a bare metal cluster. I noticed the kube-apiserver is exposing its interface on a private IP: # kubectl get pods kube-apiserver-cluster1 -n kube-system -o wide NAME …
jersey bean
  • 3,321
  • 4
  • 28
  • 43
1
vote
1 answer

Where Are TLS Handshake Errors In APISERVER Logs Coming From?

I have a cluster provisioned using KubeSpray on AWS. It has two bastions, one controller, one worker, and one etcd server. I am seeing endless messages in the APISERVER logs: http: TLS handshake error from 10.250.227.53:47302: EOF They come from…
David Medinets
  • 5,160
  • 3
  • 29
  • 42
1 2 3
8 9