Difference between revisions of "Access Kubernetes REST API using default token"

From wikieduonline
Jump to navigation Jump to search
(Created page with " APISERVER=$(kubectl config view --minify | grep server | cut -f 2- -d ":" | tr -d " ") TOKEN=$(kubectl describe secret default-token | grep -E '^token' | cut -f2 -d'...")
 
 
(16 intermediate revisions by the same user not shown)
Line 2: Line 2:
 
  TOKEN=$([[kubectl describe secret default-token]] | grep -E '^token' | cut -f2 -d':' | tr -d " ")
 
  TOKEN=$([[kubectl describe secret default-token]] | grep -E '^token' | cut -f2 -d':' | tr -d " ")
 
   
 
   
  curl $APISERVER/api [[--header]] "[[Authorization: Bearer]] $TOKEN" --insecure
+
  [[curl]] $APISERVER[[/api]] [[--header]] "[[Authorization: Bearer]] $TOKEN" --insecure <ref> https://kubernetes.io/docs/tasks/access-application-cluster/access-cluster/</ref>
Ref: https://kubernetes.io/docs/tasks/access-application-cluster/access-cluster/
 
  
 +
You can use a default-token or generate one in EKS using: <code>aws eks get-token</code>
  
 +
== Examples ==
 +
{"type":"error","status":"[[401]]","message":"[[Unauthorized 401: must authenticate]]"}
  
{{K8s API}}
+
{
 +
  "kind": "[[APIVersions]]",
 +
  "versions": [
 +
    "v1"
 +
  ],
 +
  "serverAddressByClientCIDRs": [
 +
    {
 +
      "clientCIDR": "0.0.0.0/0",
 +
      "serverAddress": "ip-172-16-37-214.ec2.internal:443"
 +
    }
 +
  ]
 +
}%
 +
 
 +
 
 +
== Errors ==
 +
Error from server (NotFound): secrets "[[default-token]]" not found
 +
 
 +
== Related ==
 +
* [[Kubernetes bearer tokens]]
 +
* <code>[[Content-Type: application/json]]</code>
 +
* [[curl http://localhost:8080/api/]]
 +
* [[curl --header]]
 +
* [[Access EKS API using a Bearer token]]
 +
 
 +
== See also ==
 +
* {{K8s API}}
 +
 
 +
[[Category:K8s]]

Latest revision as of 17:13, 24 October 2023

APISERVER=$(kubectl config view --minify | grep server | cut -f 2- -d ":" | tr -d " ")
TOKEN=$(kubectl describe secret default-token | grep -E '^token' | cut -f2 -d':' | tr -d " ")

curl $APISERVER/api --header "Authorization: Bearer $TOKEN" --insecure [1]

You can use a default-token or generate one in EKS using: aws eks get-token

Examples[edit]

{"type":"error","status":"401","message":"Unauthorized 401: must authenticate"}
{
 "kind": "APIVersions",
 "versions": [
   "v1"
 ],
 "serverAddressByClientCIDRs": [
   {
     "clientCIDR": "0.0.0.0/0",
     "serverAddress": "ip-172-16-37-214.ec2.internal:443"
   }
 ]
}%


Errors[edit]

Error from server (NotFound): secrets "default-token" not found

Related[edit]

See also[edit]

  • https://kubernetes.io/docs/tasks/access-application-cluster/access-cluster/
  • Advertising: