在 OpenShift Node.js 服务器上设置 SSL 证书时遇到问题
Having trouble setting up an SSL cert on an OpenShift Node.js server
我正在使用 REST API 的免费层部署和 Node / Express。
我已经启动了服务器并 运行ning 并且它仅通过 HTTP 响应请求。
我正在尝试按照本指南使用 certbot 设置证书:https://blog.openshift.com/create-https-based-encrypted-urls-using-routes/
当我尝试 运行 命令时:
oc scale dc/router --replicas=0 -n default
我回来了:
Error from server (Forbidden): deploymentconfigs.apps.openshift.io
"router" is forbidden: User "myUserName" cannot get
deploymentconfigs.apps.openshift.io in the namespace "default": no
RBAC policy matched
如有任何建议,我们将不胜感激。
链接的博客 post 有点过时;最初的假设之一是 "You have OpenShift (either Enterprise or Origin) running."。那就是 OpenShift Container Platform (formerly OpenShift Enterprise) or OKD in today's naming, deployed in your data center/cloud and fully managed by yourself. The OpenShift Online 是一个多租户环境,用户没有管理权限。您将无法管理集群路由器,或者通常无法操作不在您的项目中的任何东西。
自定义路由主机(带有自定义证书)are not supported on OpenShift Online Starter (the free tier), but for external accessibility of your service via HTTPs, you can use the provided wildcard certificate for the default route host (*.<shard>.<cluster>.openshiftapps.com). Simply create a secure route for your existing service (the Edge TLS termination). This can be easily done in the web console, or alternatively using the oc create route edge --service=<service-name> command. Both methods are mentioned on the above linked documentation page。
我正在使用 REST API 的免费层部署和 Node / Express。 我已经启动了服务器并 运行ning 并且它仅通过 HTTP 响应请求。
我正在尝试按照本指南使用 certbot 设置证书:https://blog.openshift.com/create-https-based-encrypted-urls-using-routes/
当我尝试 运行 命令时:
oc scale dc/router --replicas=0 -n default
我回来了:
Error from server (Forbidden): deploymentconfigs.apps.openshift.io
"router" is forbidden: User "myUserName" cannot get
deploymentconfigs.apps.openshift.io in the namespace "default": no
RBAC policy matched
如有任何建议,我们将不胜感激。
链接的博客 post 有点过时;最初的假设之一是 "You have OpenShift (either Enterprise or Origin) running."。那就是 OpenShift Container Platform (formerly OpenShift Enterprise) or OKD in today's naming, deployed in your data center/cloud and fully managed by yourself. The OpenShift Online 是一个多租户环境,用户没有管理权限。您将无法管理集群路由器,或者通常无法操作不在您的项目中的任何东西。
自定义路由主机(带有自定义证书)are not supported on OpenShift Online Starter (the free tier), but for external accessibility of your service via HTTPs, you can use the provided wildcard certificate for the default route host (*.<shard>.<cluster>.openshiftapps.com). Simply create a secure route for your existing service (the Edge TLS termination). This can be easily done in the web console, or alternatively using the oc create route edge --service=<service-name> command. Both methods are mentioned on the above linked documentation page。