无法获得服务

时间:2018-10-09 15:17:35

标签: google-cloud-platform google-kubernetes-engine

我有第二个问题:服务中包装了云sql代理pod,并且必须提供对数据库的访问。

我有一份工作,必须为每个分支创建新的数据库。

但是当此作业运行时,出现第二个错误。我无法访问cloudsql-proxy-service。

我不明白为什么会这样。谢谢。

  

E psql:无法连接到服务器:连接超时

     

E服务器是否在主机“ cloudsql-proxy-service”上运行   (10.43.254.123)并接受

     

端口5432上的E TCP / IP连接吗?

apiVersion: apps/v1
kind: Deployment
metadata:
    name: cloudsql-proxy
    labels:
        type: backend
        name: app
    annotations:
        "helm.sh/created": {{ .Release.Time.Seconds | quote }}
        "helm.sh/hook": pre-install
        "helm.sh/hook-weight": "-20"
spec:
    replicas: 1
    selector:
        matchLabels:
            name: cloudsql-proxy
    template:
        metadata:
            labels:
                name: cloudsql-proxy
        spec:
            containers:
            -   name: cloudsql-proxy
                image: gcr.io/cloudsql-docker/gce-proxy:1.11
                command:
                - "/cloud_sql_proxy"
                - "-instances={{ .Values.testDatabaseInstanceConnectionName }}=tcp:5432"
                - "-credential_file=/secrets/cloudsql/credentials.json"
                securityContext:
                    runAsUser: 2  # non-root user
                    allowPrivilegeEscalation: false
                volumeMounts:
                -   name: cloudsql-instance-credentials
                    mountPath: /secrets/cloudsql
                    readOnly: true
                ports:
                  - containerPort: 5432
            volumes:
            -   name: cloudsql-instance-credentials
                secret:
                    secretName: {{ .Values.cloudSqlProxySecretName }}
---
apiVersion: v1
kind: Service
metadata:
  name: cloudsql-proxy-service
  labels:
    type: backend
    name: app
  annotations:
      "helm.sh/created": {{ .Release.Time.Seconds | quote }}
      "helm.sh/hook": pre-install
      "helm.sh/hook-weight": "-20"
spec:
  selector:
      name: cloudsql-proxy
  ports:
      - port: 5432


apiVersion: batch/v1
kind: Job
metadata:
    name: create-test-database
    labels:
        type: backend
        name: app
    annotations:
        "helm.sh/created": {{ .Release.Time.Seconds | quote }}
        "helm.sh/hook": pre-install
        "helm.sh/hook-weight": "-10"
spec:
    template:
        metadata:
          name: create-test-database
        spec:
            containers:
            -   name: postgres-client
                image: kalumkalac/postgresql-client
                env:
                    -   name: PGUSER
                        value: {{ .Values.testDatabaseCredentials.username }}
                    -   name: PGPASSWORD
                        value: {{ .Values.testDatabaseCredentials.password }}
                    -   name: PGDATABASE
                        value: {{ .Values.testDatabaseCredentials.defaultDatabaseName }}
                    -   name: PGHOST
                        value: cloudsql-proxy-service
                command:
                    - psql
                    - -q
                    - -c CREATE DATABASE {{ .Values.testDatabaseCredentials.name|quote }}
            restartPolicy: Never
    backoffLimit: 0 # Deny retry job

0 个答案:

没有答案