hi how do I check the k8s configs for worker, simi...
# ask-communityv
Vicky Kwan
09/14/2023, 9:45 PMhi how do I check the k8s configs for worker, similar to how I checked
prefect kubernetes manifest agent... workern
Nate
09/14/2023, 9:47 PMhey @Vicky Kwan - you can check out the helm chart
v
Vicky Kwan
09/14/2023, 9:56 PMHi @Nate thanks for the link! I'm actually having a bigger problem:
I don't know how to pass the service account into a k8s worker pool, so the deployment can use this service account to access the correct namespace.
the error I'm hitting is:
Vicky Kwan
09/14/2023, 9:56 PMVicky Kwan
09/14/2023, 9:57 PMthen I wanted to check what/where is this service account
system:serviceaccount:prefect:prefect-workerprefect-api-keyVicky Kwan
09/14/2023, 9:57 PMwhich is the exact service account that I passed into our helm chart
Vicky Kwan
09/14/2023, 9:57 PMhow can I check:
1. which service account is this pool really using, and if not correct, I'll update to the correct one,
2. what permission set looks like for this service account, if I need to override, should I do it over
role.extraPermissionsVicky Kwan
09/14/2023, 10:00 PM3. I don't quite get it why it's looking for
kube-systemprefectn
Nate
09/14/2023, 10:02 PMif you go into
EditNate
09/14/2023, 10:03 PMand these should match your specifications in the helm chart to make sure your permissions work as expected
v
Vicky Kwan
09/14/2023, 10:09 PMI tried that to match with the namespace and service account (on the org service accounts page right?) but still seeing the same error
n
Nate
09/14/2023, 10:10 PMyour service account is called
prefect-api-keyNate
09/14/2023, 10:10 PMseems like that would be the name of your k8s secret holding your api key
Nate
09/14/2023, 10:11 PMthe service account in this context refers to the kubernetes service account - if you didnt configure yourself manually, i would leave it at the default on the helm chart and here on the work pool
v
Vicky Kwan
09/15/2023, 9:03 PMthanks Nate! turned out we needed to explicitly set the
cluster.Uid