我们在 EKS 中为 springboot 应用程序创建 Ingress 时遇到问题。我们在尝试创建 Ingress 时遵循可用的 AWS 文档。 https://aws.amazon.com/premiumsupport/knowledge-center/eks-alb-ingress-controller-setup/
在检查日志时,我们看到 serviceAccount 能够访问其服务的权限错误。请参阅下面的日志。非常感谢这方面的任何帮助。
{"level":"error","ts":1614308496.6815305,"logger":"controller","msg":"Reconciler error","controller":"ingress","name":"ingress-2048", "namespace":"game-2048","error":"无法自动发现子网:WebIdentityErr:检索凭据失败\n原因:AccessDenied:无权执行 sts:AssumeRoleWithWebIdentity\n\tstatus 代码:403,请求 ID:fda38613-cded-49ba-9542-624962ffdb80"} {"level":"error","ts":1614308506.9275057,"logger":"controller","msg":"Reconciler error","controller": “入口”,“名称”:“入口 2048”,“命名空间”:“游戏 2048”,“错误”:“无法自动发现子网:WebIdentityErr:检索凭据失败\n原因:AccessDenied:无权执行 sts:AssumeRoleWithWebIdentity\n\t 状态代码:403,请求 ID:73c54038-3259-4e04-8e44-930bccdc6ac0”} {"level":"error","ts":1614308527.413746,"logger":"controller","msg":"Reconciler error","controller":"ingress","name":"ingress-2048", "namespace":"game-2048","error":"无法自动发现子网:WebIdentityErr:检索凭据失败\n原因:AccessDenied:无权执行 sts:AssumeRoleWithWebIdentity\n\tstatus 代码:403,请求 ID:4281835c-e491-4a64-9926-df5f22d2b630"} {"level":"error","ts":1614308568.3853583,"logger":"controller","msg":"Reconciler error","controller":"ingress","name":"ingress-2048","namespace":"game-2048","error" :"无法自动发现子网:WebIdentityErr:检索凭据失败\n原因:AccessDenied: 无权执行 sts:AssumeRoleWithWebIdentity\n\tstatus code: 403, request id: f5ceec2c-a163-49a1-ba24-810c556278b8"}