60,003 questions
0
votes
0
answers
27
views
the kubernetes scale did not work after renew the kubernetes cluster certificate [closed]
After I renew the kubernetes certificate, now I found the kubernetes cluster scale did not work(I delete the pod and the desired pod did not create automatically too). when I turned the desire pod ...
- 40.8k
-3
votes
0
answers
21
views
Terraform Helm release fails in Azure DevOps: “Kubernetes cluster unreachable: the server has asked for the client to provide credentials” [closed]
I have an AKS cluster that is deployed using Terraform.
After the AKS deployment finishes, I run a post-deployment step in an Azure DevOps Release Pipeline to install NGINX Ingress using the Terraform ...
-2
votes
1
answer
41
views
Kubernetes: I want to import a docker image, what i miss? [closed]
I have follow this "way" to import my ftp docker image in kubernetes.
First from docker server (is another node, on another net)
docker save -o ftp1.tar user/ftp1
then I rsync tar to ...
- 813
-1
votes
0
answers
26
views
How to expose an NGINX Gateway Fabric Gateway to an external web proxy? [closed]
I have StatefulSets (frontend-ss and backend-ss) with corresponding Services in my Kubernetes cluster:
apiVersion: v1
kind: Service
metadata:
name: backend-service
labels:
app: backend-ss
...
- 17
-5
votes
0
answers
38
views
Memory management in Kubernetes [closed]
I'm running a cluster in AWS (EKS).
I'm experiencing an issue with a pod hosting an import service (Python FastAPI endpoint).
The pod restarts upon file import.
Reason : OOMKilled - exit code: 137
The ...
- 111
Best practices
0
votes
0
replies
34
views
Resource propagation on multi-cloud environment using Karmada
As far as i know, resources created on karmada-api-server would propagate to member clusters. ( based on propagation policies )
But i need to create a multi cluster synchronization.
e.g. When a ...
- 5,988
1
vote
0
answers
35
views
Microsoft.ML C#: GPU not found in K8s/Docker container
I have created a .NET app that uses Microsoft.ML.OnnxRuntime.Gpu for interference. Now I'm trying to integrate it with Azure Kubernetes.
We have made the setup with Tesla T4 GPU and we confirmed it's ...
- 555
1
vote
0
answers
30
views
Socket with SignalR and kubernetes
I encountered a problem when deploying a socket application using signalr. I connect with the longpolling method and it still works, but the websocket gives an error: Error: Failed to start the ...
0
votes
0
answers
37
views
Why I get pod has unbound immediate PersistentVolumeClaims. preemption: 0/2 nodes are available: 2 Preemption is not helpful for scheduling? [closed]
Why I get this error message :
pod has unbound immediate PersistentVolumeClaims. preemption: 0/2 nodes are available: 2 Preemption is not helpful for scheduling
?
storageclass created:
raphy@raohy:~/....
- 3,246
-2
votes
0
answers
42
views
VS Code: Is the yaml red hat plugin not working correctly with helm? [closed]
I'm using VS Code to work with Kubernetes and Helm YAML files. I have the Red Hat plugin installed. Everything was fine until today. I always had simple files, but today I opened a file with if/else/...
- 9
0
votes
0
answers
31
views
Issue with Custom Engine Agent for Copilot – Service Not Responding After Deployment to Kubernetes
I'm trying to create a Custom Engine Agent for Copilot. I have set up a bot, an app registration, and a manifest file. When I run the service locally using DevTunnel, everything works fine—the bot ...
Advice
0
votes
0
replies
34
views
Does an EC2 instance automatically run my Dockerfile if I copy it onto the server, or do I need to reboot it first?
If I scp my Dockerfile into an EC2 instance, does it automatically become a container, or do I need to reboot the instance first? Also, is there a preferred AZ for this, or will us-east-2b do? I need ...
Advice
0
votes
0
replies
30
views
How does Java containers react when container runtime updates containers cgroup settings
Kubernetes v1.33+ supports in-place pod resize. I am trying to understand how latest JDK versions react to an in-place pod resize i.e; when container runtime updates containers cgroup settings and ...
- 41
0
votes
0
answers
23
views
Using Federated Credentials Flow with Webclient in Springboot [closed]
What we have and want:
Currently we make use of the standard clientCredentials flow like it's explained here: https://www.baeldung.com/spring-webclient-oauth2#1-client-and-provider-configurations
We ...
0
votes
1
answer
37
views
ActiveProcessorCount is showing "-1" even after specifying CPU limits in Container
I have my application running on an AL2023 node in EKS cluster.
Below is the snippet of the Container resources in the Pod definition
resources:
# memory ~ heap space +10%
# CPU ~ no more than 1/8 of ...
- 365
-3
votes
0
answers
69
views
Host Cannot Reach NodePort Service on Kind Cluster with Cilium eBPF Kube-Proxy Replacement [closed]
I set up a Kubernetes cluster using Kind with one master and two worker nodes, and implemented Cilium's eBPF kube-proxy replacement. I deployed an nginx application and exposed it externally via ...
- 1
0
votes
0
answers
39
views
java.net.UnknownHostException in a Helm Project
What are the steps I should take to solve the error:
17-11-2025 14:00:00.002 [org.test.ingest.io] ERROR o.s.s.s.TaskUtils$LoggingErrorHandler.handleError - Unexpected error occurred in scheduled task
...
- 11
1
vote
0
answers
40
views
appsettings.json not read after deploying to Minikube (values become empty, DB connection fails)
I'm running an ASP.NET Core application.
Everything works correctly when using Docker Compose — all values from appsettings.json load normally, and my services connect to Postgres and RabbitMQ.
But ...
- 11
Advice
2
votes
0
replies
43
views
ArgoCD ApplicationSet and Workflow to create ephemeral environments from GitHub branches
How would you rate this GitOps workflow idea with ArgoCD + ApplicationSet + PreSync hooks?
In my organization we already use Argo CD for production and staging deployments. We're considering giving ...
- 6,750
2
votes
0
answers
68
views
MongoDB 8.0: StaleDbVersion triggers shard-local majority write after step-up; fails with 2 data + 1 arbiter when one data pod is down [closed]
Environment
Deployment: Kubernetes (RKE2), Bitnami MongoDB Sharded Helm chart
MongoDB: 8.0.8
mongosh: 2.5.0
Topology:
Config servers: 3 (CSRS)
Mongos: 3
Shards: 3 shards total; each shard is a replica ...
-3
votes
1
answer
64
views
terraform issue when i add new value in config map
I’m trying to add a new record to my ConfigMap. It’s the third time I’ve done this operation – I made the previous edits in dev and stage – but in prod, when I add the record, Terraform tries to ...
0
votes
1
answer
60
views
Failed to bind properties under 'server.address' with helm
I want to deploy my app on kubernetes with Helm
I have a Ingest Service running with spring boot that is made of two parts
Fiprocessor
Io
Both of this part use the same deployment file and the same ...
- 11
1
vote
0
answers
45
views
TLS Handshake disappearing when modifying it with eBPF (TC egress)
I have two k8s pods that communicate using TLS. I am loading an eBPF TC code on the egress of the sender pod. This code adds 28 bytes to the optional space of the TCP headers after TCP options. If I ...
- 11
1
vote
1
answer
84
views
YQ: load a text file as array and use it for an operation
I have a yaml file with an arbitrary amount of documents, and I'm trying to replace all missing namespaces for namespaceable resources with an arbitrary input one.
Getting the non-namespaceable ...
- 809
Advice
0
votes
0
replies
32
views
Why is container.cpu.usage metric from kubeletstats receiver bigger than k8s.pod.cpu.usage metric from the same receiver
I have deployed opentelemetry-collector-contrib 0.139.0 to a Kubernetes cluster as a DaemonSet. The Kubernetes cluster is deployed on AWS EKS with a Node group of two EC2 Nodes. Kubernetes version is ...
- 2,683
0
votes
0
answers
29
views
Error in V1Binding when using a custom scheduler
I encountered the error
V1_binding.py", line 156, in target
raise ValueError("Invalid value for `target`, must not be `None`")
ValueError: Invalid value for `target`, must not be `...
- 11
-2
votes
0
answers
66
views
Using golang's k8s.io appsv1 api to get the ReadyReplicas for a deployment does not agree with kubectl
In a retry/backoff loop, I check, using https://pkg.go.dev/k8s.io/api/apps/v1#Deployment:
ready := client.AppsV1().Deployments(f.Namespace).Get(context.TODO(), dep.GetName(), metav1.GetOptions{})....
- 138
Tooling
0
votes
0
replies
22
views
Open resty kubernetes frontend
User-->Load abalancer-Frontend VPC-Openresty Nginx --->Router-->Priv LB -->Kubernetes
I want to ask about Openresty in Kubernetes. I am using it now as reverse Proxy as Tasks in AWS and ...
- 11
0
votes
0
answers
45
views
Stakater/Reloader doesn't detect secret change [closed]
I have a bug raised in stakater/reloader Github page.
In a nutshell, I have reloader running in namespace reloader and application with secrets running in the namespace test, the deployment gets ...
- 3,701
1
vote
0
answers
125
views
Java 21+ container support: active processor count
In containers running Java 21+, I would like to have the active processor count reflect the actual available hardware cores, regardless of configured CPU shares.
CSR JDK-8281571 "Do not use CPU ...
- 1,288
5
votes
1
answer
3k
views
dockerhub.io officially removed openjdk:8-jre from thier repository and what is he best alternative for it [duplicate]
While building the image for one of our application, I observed that I am unable to pull openjdk:8-jre from official docker.io
error: [ERROR]: [#3 ERROR: docker.io/library/openjdk:8-jre: not found]
I ...
- 53
0
votes
0
answers
50
views
KubernetesPodOperator - [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: unable to get local issuer certificate (_ssl.c:1006)
I’m running Apache Airflow inside a Docker container and trying to use the KubernetesPodOperator to run a simple “hello world” pod in an external Kubernetes cluster (not the same one where Airflow ...
-2
votes
0
answers
99
views
Django unicorn asgi concurrency performan issue [duplicate]
Edit
Here is a similar question but is specifically about request sync block in async.
I'm just curious more about why the concurrency means they all take substantially longer - at different places in ...
- 141
0
votes
1
answer
61
views
How to translate caddy to ingress nginx controller
I'm having this config from Caddy and I want to migrate it to ingress nginx controller
@restrictAccess {
path /path1/loc1/*
path /path2/loc3/*
}
route @restrictAccess {
...
- 415
0
votes
0
answers
74
views
How to overwrite an env value with Helm
I want to deploy an app on Kubernetes with Helm. This app is composed of multiple parts, 2 of them are a Spring backend and a Mongo database.
I want to deploy theme in 2 pods and have them talk with ...
- 11
0
votes
1
answer
88
views
How can I support multiple OIDC authentication providers?
I have built a Blazor standalone webassembly in .NET 9 for a new application that we are building in our company and have successfully integrated it into our Okta system for authentication of the user....
0
votes
0
answers
63
views
Tilt Port Forwarding to specific pod in Kubernetes Resource
We use Tilt to manage our local development Kube clusters. I've integrated the langfuse helm chart in the Tiltfile, which functions properly, however I'm having trouble forwarding a port to the web ...
- 1
0
votes
1
answer
57
views
Helm subchart uses baseline values.yaml instead of merged values.yaml + values-dev.yaml when deployed via parent chart
Here is my helm chart structure:
app/
├── Chart.yaml
├── values.yaml
├── values-dev.yaml
└── templates/
app-test/
├── Chart.yaml
├── values.yaml
├── values-dev.yaml
└── charts/
...
- 63
0
votes
0
answers
50
views
Why does KEDA create a second Selenium Node for the second Chrome session instead of using available slots on the first node
I'm running Selenium Grid in Minikube using the official Docker Selenium Helm chart, with KEDA enabled for autoscaling. My goal is to scale Chrome nodes based on session demand, where each node can ...
- 1
0
votes
0
answers
40
views
ArgoCD database patching
We have a namespace consisting of 3 applications:
Database patcher
API
Web site
Currently we are using ArgoCD app-of-apps pattern to roll this out. Each application above is therefore it's own ...
- 725
1
vote
1
answer
79
views
Handling cleanup for tasks which might be OOMKilled
I have some Python code running in k8s which in some cases is being OOMKilled and not leaving me time to cleanup which is causing bad behavior.
I've tried multiple approaches but nothing seems quite ...
- 175
0
votes
0
answers
62
views
Helm doesn't remove initContainers from Deployment
I've created deployment template using helm (v3.14.3) with support for setting initContainers. Last time I realized one of initContainers removed from values.yaml is still present in cluster. I tried ...
- 104
0
votes
0
answers
78
views
Duplicate socket in k8 pods
There is an issue regrading sockets that i am facing, assume we have two services running A and B and both services have 5 replicas. client is connected to service B and service B sends socket to ...
0
votes
0
answers
52
views
Need help My script is throwing ERROR - Failed to load kubeclient or get node_list
I have a script where it checks for the cluster status and posts it to SREConsole by doing this we will be knowing about the cluster status. but i am seeing "ERROR - Failed to load kubeclient or ...
0
votes
0
answers
50
views
K8s Leader election with Micronaut
I'm trying to follow this doc from Micronaut to implement the leader election to lock on the scheduler, so that I can make sure only scheduler run for only one pod. (I know we have shred lock, but ...
- 31
0
votes
0
answers
53
views
Spatial join without Apache Sedona
currently I'm working in a specific version of Apache Spark (3.1.1) that cannot upgrade. Since that I can't use Apache Sedona and the version 1.3.1 is too slow. My problem is the following code that ...
- 149
0
votes
1
answer
65
views
My django API “next” link uses a stale hostname only when receiving requests from GKE services (Like Cloud Run)
What are the details of your problem?
I have a application in Django that is deployed using GKE. It uses an ingress to deploy it...
Those manifests.yml that are used for deploying applications on ...
- 858
0
votes
1
answer
96
views
Layers of timeout in an Istio+k8s managed cluster
I have a cluster of microservices. UI calls API1 (assuming it goes through ingress gateway, correct me if I am wrong), API1 calls API2 via RestTemplate.
The API2 process is bulky and takes roughly 1.5 ...
- 1
0
votes
1
answer
96
views
Flux with SOPS doesn't decrypt stringData [closed]
I'm trying to use fluxcd on my kubernetes cluster, which is working perfectly fine.
Now I wanted to add prometheus/grafana stack and use sops to decrypt the basic_auth part in the scrapingConfig from ...
- 31
0
votes
1
answer
59
views
Render webpage that sets X-Frame-Options and redirects to OAuth flow in IFrame [closed]
I have a requirement where I need to render a web app that uses oauth to login in an iframe. The iframe setup is for tutorials, where the tutorial content is in one column, and the web app is in ...
- 2,967