Not able to create new service account for kafka, even though there are no service accounts on my name. #1473
Labels
Comments
|
@fbm3307 Thank you for logging issue. Do you mind sending the same content to mk-support@redhat.com This is problem with your organization that I cannot comment on public repository. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
When trying to run the command "$ rhoas cluster connect --namespace $PROJECT -v " it gives an error of " Max allowed number:5 of service accounts for user:fmehta@redhat.com has reached" "Could not create service account: 403 Forbidden"
I Have checked the list of service accounts using "$ rhoas service-account list
", there are currently NO service accounts on my userid, still its is not allowing me to create a service account.
How can i create service account for kafka in such scenarios.?
Following is the output i got,
**_fmehta@fmehta-mac ~ % rhoas cluster connect --namespace $PROJECT -v
Refreshing tokens
Tokens refreshed
? Select type of service kafka
2022/03/16 16:10:17
GET /api/kafkas_mgmt/v1/kafkas/c8orkqrop56slbsgcag0 HTTP/1.1
Host: api.openshift.com
User-Agent: rhoas-cli_0.37.0
Accept: application/json
Accept-Encoding: gzip
2022/03/16 16:10:18
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: application/json
Date: Wed, 16 Mar 2022 10:40:18 GMT
Server: envoy
Set-Cookie: fd54e0c6afe7af399411d825d46072e5=66269563042530407fbcaf1bf4b7a829; path=/; HttpOnly; Secure; SameSite=None
Vary: Authorization
X-Envoy-Upstream-Service-Time: 42
X-Operation-Id: c8ort4jop56slbsgcjb0
{"id":"c8orkqrop56slbsgcag0","kind":"Kafka","href":"/api/kafkas_mgmt/v1/kafkas/c8orkqrop56slbsgcag0","status":"ready","cloud_provider":"aws","multi_az":true,"region":"us-east-1","owner":"fmehta@redhat.com","name":"nodejs-binding","bootstrap_server_host":"nodejs-bin-c-orkqrop--slbsgcaga.bf2.kafka.rhcloud.com:443","created_at":"2022-03-16T10:22:36.040886Z","updated_at":"2022-03-16T10:40:18.073792Z","version":"3.0.0","instance_type":"eval","reauthentication_enabled":true,"kafka_storage_size":"1000Gi"}
This command will link your cluster with Cloud Services by creating custom resources and secrets.
In case of problems please execute "rhoas cluster status" to check if your cluster is properly configured
Connection Details:
Service Type: kafka
Service Name: nodejs-binding
Kubernetes Namespace: fmehta-dev
Service Account Secret: rh-cloud-services-service-account
? Do you want to continue? Yes
Access token already exist on the specified namespace rh-cloud-services-accesstoken
2022/03/16 16:10:23
POST /api/kafkas_mgmt/v1/service_accounts HTTP/1.1
Host: api.openshift.com
User-Agent: rhoas-cli_0.37.0
Content-Length: 31
Accept: application/json
Content-Type: application/json
Accept-Encoding: gzip
{"name":"rhoascli-1647427223"}
POST /api/kafkas_mgmt/v1/service_accounts HTTP/1.1
Host: api.openshift.com
Accept: application/json
Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCIgOiAiSldUIiwia2lkIiA6ICItNGVsY19WZE5fV3NPVVlmMkc0UXhyOEdjd0l4X0t0WFVDaXRhdExLbEx3In0.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.xYLdXFY68OE8H--JxvhIyPSCgJ_NCovKHp6TA42zb_m8GGjta8BHfyDfjPBmGSoOvcNkXLYlDraea4-ytM2M0gg4cQDGcX41mMZzePzthYqZPbAHCw4X6jM_BN6lOsHDDtGZejX2Eq49V4zuKY2n2LNVPdE87YSG00Q0UXF21e_nLX6WkkNF19gmJgk4yaHmTQa6IrJf1guHSEnl0M5Rz-mvakKYepnQmJMqJuQQrhXYoUWbamnK6WXd5Obk_Zmd0zsAy3AucQ_P3WhQCgmHuvUG7iyX_62zFjDBQmWFqkPygIuNSOYOioPjPgvbqhZHzcp1EF7d_DZYhzfXzLIyMlXzXlntTy4scT1v2LDTahorcp-9ssm0JxygDXjMw7PN0YjfE0WPO2IapoF8XipuN2LjIc45NQigO_Aigdf7GaWf0Bg31KZfKqOA3kmr-WvoF6XbjyHdVllPIpKWmiko61TjMH6BKjmKYmxnZRz9LK1vV-s-vWdNXdIurgdQiAK9ZDCS_7wsW-s8h7ZgmNKyIEEIs7LOQ9oBXmQvCUkeU-yEvWA_RZQphks3ViGrArvQ9j9Tisn24TFflAWGwMseiRZt-M7oFHjadmZOiWpuJgs7n3Z3D2qvWKfSAP-i-9QWs0eKpW3eeJ-FhP8oe6qTAsJ43BGABgxNJ-ipbl3fbvw
Content-Type: application/json
User-Agent: rhoas-cli_0.37.0
HTTP/1.1 403 Forbidden
Content-Type: application/json
Date: Wed, 16 Mar 2022 10:40:24 GMT
Server: envoy
Set-Cookie: fd54e0c6afe7af399411d825d46072e5=66269563042530407fbcaf1bf4b7a829; path=/; HttpOnly; Secure; SameSite=None
Vary: Authorization
X-Envoy-Upstream-Service-Time: 35
X-Operation-Id: c8ort63op56slbsgcjd0
{"id":"4","kind":"Error","href":"/api/kafkas_mgmt/v1/errors/4","code":"KAFKAS-MGMT-4","reason":"Max allowed number:5 of service accounts for user:fmehta@redhat.com has reached","operation_id":"c8ort63op56slbsgcjd0"}
2022/03/16 16:10:23
HTTP/1.1 403 Forbidden
Content-Type: application/json
Date: Wed, 16 Mar 2022 10:40:24 GMT
Server: envoy
Set-Cookie: fd54e0c6afe7af399411d825d46072e5=66269563042530407fbcaf1bf4b7a829; path=/; HttpOnly; Secure; SameSite=None
Vary: Authorization
X-Envoy-Upstream-Service-Time: 35
X-Operation-Id: c8ort63op56slbsgcjd0
{"id":"4","kind":"Error","href":"/api/kafkas_mgmt/v1/errors/4","code":"KAFKAS-MGMT-4","reason":"Max allowed number:5 of service accounts for user:fmehta@redhat.com has reached","operation_id":"c8ort63op56slbsgcjd0"}
❌ Could not create service account: 403 Forbidden. Run the command in verbose mode using the -v flag to see more information_**
The text was updated successfully, but these errors were encountered: