Trying to add a nginx ingress controller (amongst other things) to my Azure AKS cluster and running into the following issue when trying to deploy via the MS flux v2 gitops setup. Think it's related to the flux/aks side of things but not too sure on where to start to enable the cross-namespace setting.

Anyone any ideas?

[
    {
        "lastTransitionTime": "2022-07-08T14:43:57 00:00",
        "message": "can't access  cross-namespace references have been blocked",
        "reason": "AccessDenied",
        "status": "False",
        "type": "Ready"
    }
]

trying to deploy using this helm manifest setup:

apiVersion: source.toolkit.fluxcd.io/v1beta1
kind: HelmRepository
metadata:
  name: ingress-nginx
  namespace: flux-system
spec:
  interval: 30m
  url: https://kubernetes.github.io/ingress-nginx

apiVersion: helm.toolkit.fluxcd.io/v2beta1
kind: HelmRelease
metadata:
  name: ingress-nginx
  namespace: ingress-system
spec:
  interval: 5m
  chart:
    spec:
      chart: ingress-nginx
      version: '4.0.13'
      sourceRef:
        kind: HelmRepository
        name: ingress-nginx
        namespace: flux-system
      interval: 1m

Read network policies being mentioned on my cluster but not seeing anything that looks relevant. Maybe just me!!

Anyone any tips? Thank you

CodePudding user response：

Currently cross namespace reference is not supported. FluxCD note is there in their API

CodePudding user response：

From the error message, it looks like you bootstrapped your Flux installation with the following flag: --no-cross-namespace-refs=true.

Note that on multi-tenant clusters, platform admins can disable cross-namespace references with the --no-cross-namespace-refs=true flag. When this flag is set, the helmrelease can only refer to sources in the same namespace as the helmrelease object.

Reference: https://fluxcd.io/docs/components/helm/helmreleases/#helm-chart-template