I1004 09:49:13.709848 1 dns.go:88] cert-manager/controller/challenges/Present "msg"="presenting DNS01 challenge for domain" "dnsName"="staging.mydomain.com" "domain"="staging.mydomain.com" "resource_kind"="Challenge" "resource_name"="staging-mydomain-com-nnw2b-1608050242-1242144700" "resource_namespace"="default" "resource_version"="v1" "type"="DNS-01"
E1004 09:49:13.969132 1 controller.go:163] cert-manager/controller/challenges "msg"="re-queuing item due to error processing" "error"="unable to get credential: failed to load secret \"cert-manager/loopia-mydomain-issuer-credentials\": secrets \"loopia-mydomain-issuer-credentials\" is forbidden: User \"system:serviceaccount:cert-manager:cert-manager-webhook-loopia\" cannot get resource \"secrets\" in API group \"\" in the namespace \"cert-manager\"" "key"="default/staging-mydomain-com-nnw2b-1608050242-1242144700"
$ kubectl get secret loopia-mydomain-issuer-credentials --namespace=cert-manager
NAME TYPE DATA AGE
loopia-mydomain-issuer-credentials Opaque 2 16m
k3s version v1.21.5+k3s1 (acad8ef8)
go version go1.16.8