位置 "default" 的备份存储无效
backup store for location "default" is invalid
我正在尝试为多个 AWS 区域中的多个集群设置 velero,尽管我在两个不同的虚拟机中使用 Github 操作和 运行 备份,EKS 集群位于 us-east-1 正在毫无问题地进行备份,但 ap-southeast-2 处的集群却没有。
下面是我使用的 velero 安装命令,它安装时没有任何问题,但是 ap-southeast-2 集群的备份失败,并且在 pod 日志中出现以下错误。
velero install \
--provider aws \
--plugins velero/velero-plugin-for-aws:v1.0.1 \
--no-secret \
--bucket $VELERO_BUCKET \
--backup-location-config region=$AWS_REGION \
--snapshot-location-config region=$AWS_REGION
日志:
time="2021-08-02T13:57:30Z" level=info msg="Checking existence of namespace" logSource="pkg/cmd/server/server.go:337" namespace=velero
time="2021-08-02T13:57:30Z" level=info msg="Namespace exists" logSource="pkg/cmd/server/server.go:343" namespace=velero
time="2021-08-02T13:57:33Z" level=info msg="Checking existence of Velero custom resource definitions" logSource="pkg/cmd/server/server.go:372"
time="2021-08-02T13:57:37Z" level=info msg="All Velero custom resource definitions exist" logSource="pkg/cmd/server/server.go:406"
time="2021-08-02T13:57:37Z" level=info msg="Checking that all backup storage locations are valid" logSource="pkg/cmd/server/server.go:413"
An error occurred: some backup storage locations are invalid: backup store for location "default" is invalid: rpc error: code = Unknown desc = AccessDenied: Access Denied
status code: 403, request id: 1HE7G5DSTZ52KTZW, host id: z65l7EaF66KuZmIxYwWiysO2FaSU4udT39HmajfMii0wXxx6V4I3IoQ7RFwGQSPQAJBqCHcTPME=
Note: I have two buckets, one in us-east-1 for that region's cluster and ap-southeast-1 for Sydney region's cluster and both are public.
因此通过创建 creds.json 并在安装 velero 时引用该文件来修复它。 no-secrets 适用于 us-east-1,但不适用于其他地区。
我正在尝试为多个 AWS 区域中的多个集群设置 velero,尽管我在两个不同的虚拟机中使用 Github 操作和 运行 备份,EKS 集群位于 us-east-1 正在毫无问题地进行备份,但 ap-southeast-2 处的集群却没有。
下面是我使用的 velero 安装命令,它安装时没有任何问题,但是 ap-southeast-2 集群的备份失败,并且在 pod 日志中出现以下错误。
velero install \
--provider aws \
--plugins velero/velero-plugin-for-aws:v1.0.1 \
--no-secret \
--bucket $VELERO_BUCKET \
--backup-location-config region=$AWS_REGION \
--snapshot-location-config region=$AWS_REGION
日志:
time="2021-08-02T13:57:30Z" level=info msg="Checking existence of namespace" logSource="pkg/cmd/server/server.go:337" namespace=velero
time="2021-08-02T13:57:30Z" level=info msg="Namespace exists" logSource="pkg/cmd/server/server.go:343" namespace=velero
time="2021-08-02T13:57:33Z" level=info msg="Checking existence of Velero custom resource definitions" logSource="pkg/cmd/server/server.go:372"
time="2021-08-02T13:57:37Z" level=info msg="All Velero custom resource definitions exist" logSource="pkg/cmd/server/server.go:406"
time="2021-08-02T13:57:37Z" level=info msg="Checking that all backup storage locations are valid" logSource="pkg/cmd/server/server.go:413"
An error occurred: some backup storage locations are invalid: backup store for location "default" is invalid: rpc error: code = Unknown desc = AccessDenied: Access Denied
status code: 403, request id: 1HE7G5DSTZ52KTZW, host id: z65l7EaF66KuZmIxYwWiysO2FaSU4udT39HmajfMii0wXxx6V4I3IoQ7RFwGQSPQAJBqCHcTPME=
Note: I have two buckets, one in us-east-1 for that region's cluster and ap-southeast-1 for Sydney region's cluster and both are public.
因此通过创建 creds.json 并在安装 velero 时引用该文件来修复它。 no-secrets 适用于 us-east-1,但不适用于其他地区。