Kubernetes Pugin cloud's default agent broken with failing to save jgit config file

mikhatanu · July 5, 2024, 4:19am

I’ve solved the jgit problem; the issue is the security context fsgroup, runasgroup, and runasuser. Jnlp uses uid 1000, so changing it to 1000 works.

For error Caused by: java.net.ProtocolException: Expected HTTP 101 response but was '403 Forbidden was solved with adding rbac rules to the role:

apiVersion: rbac.authorization.k8s.io/v1
kind: Role
metadata:
  namespace: jenkins
  name: jenkins-agent
rules:
- apiGroups: [""]
  resources: ["pods"]
  verbs: ["create","delete","get","list","patch","update","watch"]
- apiGroups: [""]
  resources: ["pods/exec"]
  verbs: ["create","delete","get","list","patch","update","watch"]
- apiGroups: [""]
  resources: ["pods/log"]
  verbs: ["get","list","watch"]
- apiGroups: [""]
  resources: ["secrets"]
  verbs: ["get"]

Topic		Replies	Views
Jenkins not picking custom JNLP Image in Kubernetes cluster Using Jenkins	0	463	April 17, 2024
Jenkins job slave error- create default pod error Ask a question question , git , docker	2	1174	July 8, 2023
Jenkins in kubernetes - trouble with agent Ask a question question	2	1040	December 14, 2021
Seeing issue with pod connection after Kubernetes Plugin Upgrade Ask a question	7	825	September 27, 2024
Jenkins agent.jar when running agents in Kubernetes? Ask a question	4	1298	February 21, 2022

Kubernetes Pugin cloud's default agent broken with failing to save jgit config file

Related topics