Comments (6)
@rporres take a look the PR #535. Another user who runs the operator on bare metal and came up with a solution.
from postgres-operator.
After a bit of experimentation on GKE, it seems that if the GOOGLE_APPLICATION_CREDENTIALS environmental variable is not set, the gcloud sdk in the spilo container defaults to using the gcloud service account associated with the kubernetes service account for the pod. This makes the feature to allow the mounting of the gcloud credentials less critical as the default behaviour is similar to --aws-instance-profile
as long as the RBAC and Google Cloud service accounts are set up properly.
from postgres-operator.
We use the operator to deploy postgres in bare metal kubernetes. We're interested in this as we keep our infra backups in GCE. Unfortunately @michailbrynard's workaround won't work in our case as there are no gcloud service account associated to the kubernetes service account for the pod. Any suggestions about how to proceed? We're happy to contribute if needed, but since we're starting using the operator guidance would be more than welcomed.
from postgres-operator.
Sounds like the operator should take care of this, similar to it already specifying the IAM role in an AWS environment. We can probably take a quick look at this, as we know from the helm chart how this should look like and would make the operator more attractive to non AWS users.
from postgres-operator.
Yes, that would be great for users running on GKE!
from postgres-operator.
👍
from postgres-operator.
Related Issues (20)
- Expose `max_locks_per_transaction` property HOT 2
- replicaCount not being respect HOT 4
- Orphan cluster role postgres-pod deployed
- Consistent Crash Loops Attempting to Bootstrap Leader and Failing Replicas
- Logical backup secret results in duplicate environment keys HOT 2
- Standby replication authorization user and slot settings can't be in `postgresql.acid.zalan.do` CRD HOT 1
- Removing cluster do not removes objects from k8s HOT 2
- When we running standby cluster we must allow connection from postgres user and know it's credentials? HOT 4
- Ability to provide imagepullsecrets for postgres cluster CRD HOT 4
- pgbouncer read write in one place HOT 1
- temporal is rejected by pg_hba.config with message "no encryption" HOT 1
- Oracle Cloud Infrastructure (OCI) support?
- Restore of db from WAL is impossible if public schema does not exists HOT 1
- authentication.superuser.password field in the postgres.yml is stored in plain text under postgres pod
- could not create user \"app-new_public_owner\": pq: syntax error at or near \"-\"' HOT 2
- consistent fails of logical backup
- WAL-G backup broken since 1.13.0, works in 1.12.2 HOT 4
- Moving from users/databases config to preparedDatabases HOT 1
- Retry unsuccessful failover on unschedulable nodes
- issue sync between Postgres-operator and patroni
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from postgres-operator.