I'm trying to run kamel on a managed kubernetes cluster with DigitalOcean.
I've setup a namespace for it, and created the registry secret I need to access our container registry (GitLab)
I install kamel using:
kamel install --registry registry.gitlab.com/xxxx/yyyy --registry-secret gitlab-reg --namespace camel
Everything seems to startup. So I then run a standard "Hello World" example:
kamel run Test-Groovy.groovy --namespace camel
It then shows as "building" when I run "kamel get", and in Kubernetes I can see a new pod start up, but the pod continually fails and restarts.
In the logs for the camel-k-operator pods, I see this error:
Error during unshare(CLONE_NEWUSER): Operation not permitted
User namespaces are not enabled in /proc/sys/kernel/unprivileged_userns_clone.
level=error msg="error parsing PID \"\": strconv.Atoi: parsing \"\": invalid syntax"
level=error msg="(unable to determine exit status)"
I can't see any steps I've missed around permissions so I'm unsure where to go next.
I am trying to use aws-s3 with an on-premise S3 store. It look like the cert of the CA is missing:
Caused by: com.amazonaws.SdkClientException: Unable to execute HTTP request: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
Is there an example for adding the required certificate into the camel integration?