k8s 中mysql 无法访问,使用Secrets输入密码时无法连接到Kubernetes中的mysql pod（拒绝访问）...

最新推荐文章于 2023-07-05 16:31:18 发布

weixin_39942037

最新推荐文章于 2023-07-05 16:31:18 发布

阅读量512

点赞数

文章标签： k8s 中mysql 无法访问

I try to setup a mysql database in Kubernetes. I configured a ConfigMap to store the Database name and a Secret that contains the root password, the user and the password for the user.

When I try to connect to the DB afterwards (Inside the container with mysql cli and from outside with IntelliJ Database tool) I get an "ERROR 1045 (28000): Access denied for user 'testadm'@'localhost' (using password: YES)" error.

My kubernetes.yaml file:

apiVersion: v1

kind: ConfigMap

metadata:

data:

mysql-database: database

---

apiVersion: v1

kind: Secret

metadata:

type: Opaque

data:

mysql-root-password: VGVzdDEyMzQK # Test1234

mysql-user: dGVzdGFkbQo= # testadm

mysql-password: VGVzdDEyMzQK # Test1234

---

apiVersion: apps/v1beta1

kind: Deployment

metadata:

spec:

replicas: 1

strategy:

type: Recreate

template:

metadata:

labels:

app: mysql

spec:

containers:

- name: mysql

image: mysql:5.7

ports:

- containerPort: 3306

env:

- name: MYSQL_DATABASE

valueFrom:

configMapKeyRef:

key: mysql-database

- name: MYSQL_ROOT_PASSWORD

valueFrom:

secretKeyRef:

key: mysql-root-password

- name: MYSQL_USER

valueFrom:

secretKeyRef:

key: mysql-user

- name: MYSQL_PASSWORD

valueFrom:

secretKeyRef:

key: mysql-password

If I set the passwords directly like below the connection succeeds inside of the container and from the outside!

env:

- name: MYSQL_ROOT_PASSWORD

value: Test1234

If I inspect the env variables inside the container I can't spot a difference between the two approaches.

Is there any additional formatting required to use the passwords stored in the secret? I also tried to place the values in the data-dictionary in quotes like this:

data:

mysql-root-password: "VGVzdDEyMzQK"

Version information

Docker 17.06.0-ce

Minikube 0.21.0

Kubectl Server 1.7.0

Kubectl Client 1.7.3

解决方案

you can use this yaml file.

apiVersion: v1

kind: Secret

metadata:

type: Opaque

data:

mysql-password: VGVzdDEyMzQ=

mysql-root-password: VGVzdDEyMzQ=

mysql-user: dGVzdGFkbQ==

weixin_39942037

关注

0
点赞
踩
0

收藏

觉得还不错? 一键收藏
0
评论
k8s 中mysql 无法访问,使用Secrets输入密码时无法连接到Kubernetes中的mysql pod（拒绝访问）...

I try to setup a mysql database in Kubernetes. I configured a ConfigMap to store the Database name and a Secret that contains the root password, the user and the password for the user.When I try to co...
复制链接

扫一扫