This message was deleted.
# generals
sparse-intern-71089
01/04/2023, 10:55 PMThis message was deleted.
b
billowy-army-68599
01/04/2023, 11:18 PM
It looks to be already installed?
p
plain-belgium-35196
01/05/2023, 2:33 AMYes. This might be this scenario.
plain-belgium-35196
01/05/2023, 2:36 AMThe scenario is Pulumi will add this label, app.kubernetes.io/managed-by, with the value as “pulumi” automatically. However it conflict with the eks addon, so it will fail with conflict error message when I tried to create the addon via pulumi.
plain-belgium-35196
01/05/2023, 2:37 AMDo you have any idea about it?
b
billowy-army-68599
01/05/2023, 3:11 AM
if the app is already installed in your cluster, you need to remove it or import it into state instread of trying to reinstall it
p
plain-belgium-35196
01/05/2023, 4:25 AMGot it. How to import it into state?
b
billowy-army-68599
01/05/2023, 4:38 AM
p
plain-belgium-35196
01/05/2023, 7:33 AMThanks
plain-belgium-35196
01/05/2023, 7:38 AMOne more question is how I can check the return error, if the error is because of the resource is existing I can skip this error
b
billowy-army-68599
01/05/2023, 3:52 PM
You cannot, the kubernetes api is returning the error
p
plain-belgium-35196
01/09/2023, 6:14 PMHi Jaxxstorm,
Tried to create ebs-csi-controller-sa before aws-ebs-csi-driver add-on. I got this conflict error, “ServiceAccount ebs-csi-controller-sa - .metadata.labels.app.kubernetes.io/managed-by”. Do you have any suggestion? Thanks
b
billowy-army-68599
01/09/2023, 6:17 PM
does a service account with that name already exist?
p
plain-belgium-35196
01/09/2023, 6:29 PMNo. I created it first, for I need to annotate the role data on it for the addon
plain-belgium-35196
01/09/2023, 6:30 PMI mean the sa was created by my pulumi code before the addon
plain-belgium-35196
01/10/2023, 12:56 AMGot this error when I tried to import sa into pulumi.
Copy code
kubernetes:core/v1:ServiceAccount (ebs-csi-node-sa):
error: inputs to import do not match the existing resourceplain-belgium-35196
01/10/2023, 12:57 AMCould you please give me some ideas. thanks
b
billowy-army-68599
01/10/2023, 5:59 AM
the error is fairly self explanatory
p
plain-belgium-35196
01/10/2023, 7:17 AMMy question is what is the unmatched data and how I can fix it. I guess that is the labels. I tried to use “IgnoreChanges” to ignore these unmatched data, but I failed. My code is like this:
Copy code
pulumi.IgnoreChanges([]string{"metadata.labels.*", "metadata.annotations.*"}))plain-belgium-35196
01/10/2023, 7:17 AM Copy code
awsEbsCsiDriversa, err := corev1.NewServiceAccount(ctx, fmt.Sprintf("%s", _AwsEbsCsiDriverSaName), &corev1.ServiceAccountArgs{
Metadata: &metav1.ObjectMetaArgs{
ClusterName: eksCluster.Core.Cluster().Name(),
Name: pulumi.String(_AwsEbsCsiDriverSaName),
Namespace: pulumi.String(_KubeSystemNameSpaceName),
},
},
pulumi.Provider(k8sProviderEnabledServerSideApply),
pulumi.DependsOn([]pulumi.Resource{iamRole4AwsEbsCsiDriver}),
pulumi.Import(pulumi.ID(fmt.Sprintf("%s/%s", _KubeSystemNameSpaceName, _AwsEbsCsiDriverSaName))),
pulumi.Protect(true),
pulumi.IgnoreChanges([]string{"metadata.labels.*", "metadata.annotations.*"}))
if err != nil {
return fmt.Errorf("error creating service account: %v", err)
}plain-belgium-35196
01/10/2023, 7:18 AMThis is my code. I didn’t set labels here.
plain-belgium-35196
01/10/2023, 7:19 AM Copy code
apiVersion: v1
kind: ServiceAccount
metadata:
creationTimestamp: "2023-01-09T10:29:51Z"
labels:
<http://app.kubernetes.io/component|app.kubernetes.io/component>: csi-driver
<http://app.kubernetes.io/managed-by|app.kubernetes.io/managed-by>: EKS
<http://app.kubernetes.io/name|app.kubernetes.io/name>: aws-ebs-csi-driver
<http://app.kubernetes.io/version|app.kubernetes.io/version>: 1.14.0
name: ebs-csi-controller-sa
namespace: kube-system
resourceVersion: "4479"
uid: bc03278e-8591-47d9-a224-675a7f6f9000b
billowy-army-68599
01/10/2023, 3:49 PM
You can’t
ignoreChangesp
plain-belgium-35196
01/10/2023, 7:05 PMGot it. Thanks.
4 Views