我收到以下错误消息:
用户"system:serviceaccount:qserv:argo工作流"无法创建资源";乔布斯;在API组中;批次";在名称空间"中;qserv";
这是相关的Role:
kubectl describe role argo-workflows-workflow
Name: argo-workflows-workflow
Labels: app.kubernetes.io/managed-by=Helm
Annotations: meta.helm.sh/release-name: argo-workflows
meta.helm.sh/release-namespace: qserv
PolicyRule:
Resources Non-Resource URLs Resource Names Verbs
--------- ----------------- -------------- -----
pods [] [] [get watch patch]
pods/log [] [] [get watch]
您能提供正确的kubectl patch命令吗?该命令将允许argo-workflows-workflow角色创建Jobs?
此命令完成任务并允许成功运行argo工作流:
kubectl patch roles.rbac.authorization.k8s.io argo-workflows-workflow --type='json' -p='[{"op": "add", "path": "/rules/-", "value": {"apiGroups": ["batch"],"resources": ["jobs"],"verbs": ["create", "get", "watch"]} }]