Replies: 1 comment
-
I figured out how to at least access data from grafana
....
- name: Jaeger
type: jaeger
uid: EbPG8fYoz
url: http://jaeger.linkerd-jaeger.svc.cluster.local:16686/jaeger <<<<<< the context path is important
access: proxy
apiVersion: policy.linkerd.io/v1alpha1
kind: AuthorizationPolicy
metadata:
namespace: linkerd-jaeger
name: grafana
spec:
targetRef:
group: policy.linkerd.io
kind: Server
name: jaeger-ui
requiredAuthenticationRefs:
- kind: ServiceAccount
name: grafana
namespace: grafanaApply it |
Beta Was this translation helpful? Give feedback.
-
Hi, I have a custom grafana running in my cluster, and would like to set my linkerd-jaeger extensions as a data source for Grafana.
However, the Linkerd policy interferes:
`[ 6426.350555s] INFO ThreadId(01) inbound:server{port=16686}: linkerd_app_inbound::policy::http: Request denied server.group=policy.linkerd.io server.kind=server server.name=jaeger-ui route.group= route.kind=default route.name=default client.tls=Some(Established { client_id: Some(ClientId(Name("default.core.serviceaccount.identity.linkerd.cluster.local"))), negotiated_protocol: None }) client.ip=10.1.10.175
[ 6426.350721s] INFO ThreadId(01) inbound:server{port=16686}:rescue{client.addr=10.1.10.175:35218}: linkerd_app_core::errors::respond: HTTP/2.0 request failed error=client 10.1.10.175:35218: server: 10.1.10.99:16686: unauthorized request on route error.sources=[unauthorized request on route]`
And I can't really find in the documentation to allow my services to add allowances tor these policies.
Any help would be much appreciated, thanks!
Beta Was this translation helpful? Give feedback.
All reactions