telepresence –namespace kubesphere-system –swap-deployment ks-account –expose 9090:9090 –run go run ./cmd/ks-iam/apiserver.go –logtostderr=true –enable-multi-login=False –token-idle-timeout=40m –generate-kubeconfig=true
报错:E0622 11:13:30.430267 11022 ldap.go:42] factory is not able to fill the pool: LDAP Result Code 200 “Network Error”: dial tcp 120.240.95.35:389: connect: connection refused
panic: runtime error: invalid memory address or nil pointer dereference
[signal SIGSEGV: segmentation violation code=0×1 addr=0×18 pc=0×1086845]

goroutine 1 [running]:
kubesphere.io/kubesphere/pkg/simple/client/ldap.NewLdapClient(0xc0000b0c80, 0xc0000b3560, 0×0, 0×0, 0×0)
/home/kubesphere/code/kubesphere/pkg/simple/client/ldap/ldap.go:43 +0×175
kubesphere.io/kubesphere/pkg/simple/client.(ClientSet).Ldap(0xc0006bc0e0, 0×0, 0×0, 0×0)
/home/kubesphere/code/kubesphere/pkg/simple/client/factory.go:264 +0×134
kubesphere.io/kubesphere/pkg/models/iam.checkAndCreateDefaultUser(0×0, 0×0)
/home/kubesphere/code/kubesphere/pkg/models/iam/im.go:156 +0×60
kubesphere.io/kubesphere/pkg/models/iam.Init(0×272c39b, 0×13, 0×27169b4, 0×8, 0×2710bd2, 0×5, 0×22ecb25c000, 0xc000870100, 0×206979e, 0xfb3680300000000f)
/home/kubesphere/code/kubesphere/pkg/models/iam/im.go:84 +0xeb
kubesphere.io/kubesphere/cmd/ks-iam/app.Run(0xc0003a2f80, 0xc0000b3560, 0×0, 0×0)
/home/kubesphere/code/kubesphere/cmd/ks-iam/app/server.go:97 +0×11e
kubesphere.io/kubesphere/cmd/ks-iam/app.NewAPIServerCommand.func1(0xc00094fb80, 0xc0000b0b40, 0×0, 0×5, 0×0, 0×0)
/home/kubesphere/code/kubesphere/cmd/ks-iam/app/server.go:65 +0xf5
github.com/spf13/cobra.(Command).execute(0xc00094fb80, 0xc00004e1f0, 0×5, 0×5, 0xc00094fb80, 0xc00004e1f0)
/home/utils/golang/gopath/pkg/mod/github.com/spf13/cobra@v0.0.3/command.go:762 +0×453
github.com/spf13/cobra.(Command).ExecuteC(0xc00094fb80, 0×0, 0×0, 0×0)
/home/utils/golang/gopath/pkg/mod/github.com/spf13/cobra@v0.0.3/command.go:852 +0×2ea
github.com/spf13/cobra.(Command).Execute(…)
/home/utils/golang/gopath/pkg/mod/github.com/spf13/cobra@v0.0.3/command.go:800
main.main()
/home/kubesphere/code/kubesphere/cmd/ks-iam/apiserver.go:29 +0×27

请参考telepresence的文档https://www.telepresence.io/reference/methods (headless服务的代理需要在参数also-proxy里手动指定)

telepresence –namespace kubesphere-system –also-proxy openldap.kubesphere-system.svc –swap-deployment ks-account –expose 9090:9090 –run go run ./cmd/ks-iam/apiserver.go –logtostderr=true –enable-multi-login=False –token-idle-timeout=40m –redis-url=redis://redis.kubesphere-system.svc:6379 –generate-kubeconfig=true
不报错了
T: Starting proxy with method ‘vpn-tcp’, which has the following limitations: All processes are affected, only one telepresence can
T: run per machine, and you can’t use other VPNs. You may need to add cloud hosts and headless services with –also-proxy. For a
T: full list of method limitations see https://telepresence.io/reference/methods.html
T: Volumes are rooted at $TELEPRESENCE_ROOT. See https://telepresence.io/howto/volumes.html for details.
T: Starting network proxy to cluster by swapping out Deployment ks-account with a proxy
T: Forwarding remote port 9090 to local port 9090.

T: Setup complete. Launching your command.
I0622 12:29:04.169332 19562 server.go:113] Server listening on 0.0.0.0:9090

但是管理台web无法登陆,报用户名密码错误

    你确认用户名密码无误的话,查看一下相关pod的日志

    ks-apigateway 日志
    10.233.99.12 22/Jun/2020:07:18:21 +0000 POST /kapis/iam.kubesphere.io/v1alpha2/login HTTP/1.1 200 200 86ms
    E0622 07:18:21.127107 1 authenticate.go:170] signature is invalid
    2020/06/22 07:18:21 Unauthorized,signature is invalid

    swap ks-accoount需要保证remote环境中的配置和本地一致,这里错误上看是 iam sercret 不一致,你确认一下

    谢谢,可以了
    是 secret 不对导致的

    1 个月 后

    问个弱弱的问题,我也出现了一样的问题,iam sercret不一致。。。这个该怎么解决啊-,-

    2 个月 后