Hi Folks!
I am trying to spawn single-user notebook on Kubernetes cluster using kubespawner . I am able to login using LDAP authenticator and I can see corresponding Kubernetes instance has been created in Kubernetes cluster. But service is not able to respond.
I tried with increasing http_timeout and start_timeout but no luck yet and hoping to get some advice what might have gone wrong.
I have seen similar post and tried with all the suggestion, but nothing seems to be working so far.
Any help would be greatly appreciated. #NewtoCommunity
I think the property your looking for is the singleuser.startTimeout
I’ve attached details below on how I got mine working in k8.
I installed this to k8 using the following chart (below)
Notes: I use keycloak as my authenticator… and using the lab teradata/jupyterlab-extensions
I use a separate config map to load the connections… thats specific to the TD image.
I’m also using Traefik as my ingress controller so I have the path https:///jhub so I dont need the loadbalancer. I create the ingressRoute seperatly as I enforce the TLS through it.
I also change the default home directory through use of the cmds.
Thank you @chrispward,
I am trying with helm chart now , as looks like that is preferred way.
While trying to set up custom service account for my singleuser , it is fetching default value which doenst have role define. Do i need to configure any other place then in Signleuser as below ?
Error :
HTTP response body: b’{“kind”:“Status”,“apiVersion”:“v1”,“metadata”:{},“status”:“Failure”,“message”:“pods is forbidden: User \“system:serviceaccount:xxxxx-dev1:default \” cannot list resource \“pods\” in API group \”" in the namespace \“xxxxx-dev1\”",“reason”:“Forbidden”,“details”:{“kind”:“pods”},“code”:403}\n’
I didnt create/use a service account.
Not sure if the charts auto create one. I think they do if you enable it.
If not, you’d have to manually create one 1st.
Looks like a priv issue (403) so the service account needs more privs.
My advice… install it with the bare min 1st and then modify you values from there. k8 can be hard to trace so get it working, then make a small alteration and update etc.
ie helm upgrade blah blah… etc.