无法将秘密卷安装到 kubernetes

Question

我的清单如下：

  1 apiVersion: v1
  2 kind: Pod
  3 metadata:
  4   name: myapp
  5 spec:
  6   containers:
  7   - name: myapp
  8     image: "myapp"
  9     ports:
 10      - containerPort: 3000
 11     command: ["bash"]
 12     args: ["-c", "sleep 999999"]
 13   imagePullSecrets:
 14     - name: regsecret
 15   volumeMount:
 16     - name: "secret-volume"
 17       mountPath: "/etc/udev"
 18       readOnly: true
 19   volumes:
 20     - name: "secret-volume"
 21       secret:
 22         - name: "myappsecret"

它产生以下错误：

error validating data: [found invalid field volumeMount for v1.PodSpec, field spec.volumes[0].secret: expected object of type map[string]interface{}, but the actual type is []interface {}];

为什么volumeMount无效？好像这里https://kubernetes.io/docs/resources-reference/v1.5/#volume-v1说有这样的指令。

我也不太明白如何将秘密指定为坐骑。尝试了几件事，包括这里的建议：https://github.com/kubernetes/kubernetes/issues/4710

Answer 1

原来 volumeMount 需要在 containers 指令下，并且需要对秘密卷结构进行轻微更改：

  1 apiVersion: v1
  2 kind: Pod
  3 metadata:
  4   name: myapp
  5 spec:
  6   containers:
  7   - name: myapp
  8     image: "myapp"
  9     ports:
 10      - containerPort: 3000
 11     command: ["bash"]
 12     args: ["-c", "sleep 999999"]
 13     volumeMounts:
 14       - name: "secret-volume"
 15         mountPath: "/etc/secret-volume"
 16         readOnly: true
 17   imagePullSecrets:
 18     - name: regsecret
 19   volumes:
 20     - name: "secret-volume"
 21       secret:
 22         secretName: "myappsecret"

无法将秘密卷安装到 kubernetes

Can't mount a secret volume to kubernetes

volume

docker

kubernetes