Kubectl logs <pod> throws forbidden error

asp · June 4, 2019, 3:05pm

Cluster information:

Kubernetes version: 1.14.2
Cloud being used: bare-metal
Installation method: manual
Host OS: Centos 7
CNI and version: calico
CRI and version: docker

Hi,

I am trying to implement GlusterFS as persistent storage solution in kubernetes. The heketi pod does not come up, so I thought, lets check the pod’s logs.

I tried the following:

$ kubectl get pod
NAME                      READY   STATUS              RESTARTS   AGE
glusterfs-7ftp9           1/1     Running             1          82m
glusterfs-mk5l4           1/1     Running             1          82m
heketi-74cc7bb45c-448w8   0/1     ContainerCreating   0          7m53s

$ kubectl logs heketi-74cc7bb45c-448w8
Error from server: Get https://x.x.x.x:10250/containerLogs/default/heketi-74cc7bb45c-448w8/heketi: Forbidden

What do I need to to to get permission?

schms · June 5, 2019, 7:44am

A Google search provides a few links. Have you already read them?

asp · June 6, 2019, 12:41pm

Hi @schms,
thanks a lot, it was your first link. I’ve setup no_proxy for hostname, but not for IP.

Now after updating /etc/kubernetes/manifests/kube-apiserver.yaml I can see the logs on other nodes.

Regards, Andreas

Topic		Replies	Views
Does anyone know this issue GKE forbidden io.k8s.core.v1.configmaps.list operation? General Discussions	0	388	February 16, 2022
Nginx 403 Forbidden Error while using NFS-Shared volume on kubernetes General Discussions	14	8646	April 11, 2022
This is about the right to access to my pod with http: troubleshooting General Discussions	0	187	January 18, 2024
[Security Advisory] CVE-2024-5321: Incorrect permissions on Windows containers logs Announcements	0	144	July 17, 2024
Kubectl logs does not display old completed container logs General Discussions development	0	1663	July 4, 2023

Kubectl logs <pod> throws forbidden error

Cluster information:

Related topics