Uploaded image for project: 'FlightPath'
  1. FlightPath
  2. FLPATH-1095

Unable to install workflows

XMLWordPrintable

    • False
    • Hide

      None

      Show
      None
    • False

      Description of the problem:

      I followed orchestrator installation document and I navigated to workflow installation page. Following command fails to run: 

      helm install orchestrator-workflows orchestrator-workflows/workflows --namespace=sonataflow-infra

      In order to fix it one needs to follow steps available here but it is not linked from the docs.

      How reproducible:
      Always

      Steps to reproduce:

      1. Follow the docs to install the orchestrator and workflow

      Actual results:

      got following error:

      W0308 11:28:36.185346  928513 warnings.go:70] Kubernetes default value is insecure, Knative may default this to secure in a future release: spec.template.spec.containers[0].securityContext.allowPrivilegeEscalation, spec.template.spec.containers[0].securityContext.capabilities, spec.template.spec.containers[0].securityContext.runAsNonRoot, spec.template.spec.containers[0].securityContext.seccompProfile, spec.template.spec.initContainers[0].securityContext.allowPrivilegeEscalation, spec.template.spec.initContainers[0].securityContext.capabilities, spec.template.spec.initContainers[0].securityContext.runAsNonRoot, spec.template.spec.initContainers[0].securityContext.seccompProfile
W0308 11:28:36.344151  928513 warnings.go:70] would violate PodSecurity "restricted:v1.24": allowPrivilegeEscalation != false (container "move2kube" must set securityContext.allowPrivilegeEscalation=false), unrestricted capabilities (container "move2kube" must set securityContext.capabilities.drop=["ALL"]), runAsNonRoot != true (pod or container "move2kube" must set securityContext.runAsNonRoot=true), runAsUser=0 (container "move2kube" must not set runAsUser=0), seccompProfile (pod or container "move2kube" must set securityContext.seccompProfile.type to "RuntimeDefault" or "Localhost")
Error: INSTALLATION FAILED: admission webhook "validation.webhook.serving.knative.dev" denied the request: validation failed: must not set the field(s): spec.template.spec.initContainers
pod spec support for init-containers is off, but found 1 init containers:

      Expected results:
      Workflows should be deployed

            masayag@redhat.com Moti Asayag
            pkliczew@redhat.com Piotr Kliczewski
            Chad Crum Chad Crum
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Created:
              Updated:
              Resolved: