I’m doing Sprint 5 of the GCP Devops course. I’ve corrected gke.yaml so that it references my project, but when cloudbuild tries to deploy the image to my cluster, I get an interesting error:
Warning Failed 28s (x3 over 67s) kubelet Failed to pull image "gcr.io/kodecloud-gcp-24472/gcpdevops@sha256:486b7617080e8ce12d0540231b5852fe328131d52c6beaf67e5e7d810790ccd2": rpc error: code = Unknown desc = failed to pull and unpack image "gcr.io/kodecloud-gcp-24472/gcpdevops@sha256:486b7617080e8ce12d0540231b5852fe328131d52c6beaf67e5e7d810790ccd2": failed to resolve reference "gcr.io/kodecloud-gcp-24472/gcpdevops@sha256:486b7617080e8ce12d0540231b5852fe328131d52c6beaf67e5e7d810790ccd2": pulling from host gcr.io failed with status code [manifests sha256:486b7617080e8ce12d0540231b5852fe328131d52c6beaf67e5e7d810790ccd2]: 401 Unauthorized
Warning Failed 28s (x3 over 67s) kubelet Error: ErrImagePull
Normal BackOff 5s (x4 over 66s) kubelet Back-off pulling image "gcr.io/kodecloud-gcp-24472/gcpdevops@sha256:486b7617080e8ce12d0540231b5852fe328131d52c6beaf67e5e7d810790ccd2"
Warning Failed 5s (x4 over 66s) kubelet Error: ImagePullBackOff
Note that the error seen at the K8s level is “401 Unauthorized”. Essentially, the cluster is not allowed to see my repository assets.
This appears to be a GCP permissions issue. How do I give my GKE cluster access to my other assets?