You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Use the logs for further troubleshooting. For example, if you see requests to your App Configuration store are responded with *RESPONSE 403: 403 Forbidden*, it may indicate the App Configuration Kubernetes Provider doesn't have the necessary permission to access your App Configuration store. Follow the instructions in [use workload identity](./reference-kubernetes-provider.md#use-workload-identity) to ensure associated managed identity is assigned proper permission.
350
+
Use the logs for further troubleshooting. Refer to the [FAQ](#faq) section for common issues.
351
351
352
352
## FAQ
353
353
354
-
#### Why I can't see the target ConfigMap being created after apply the `AzureAppConfigurationProvider` resource?
354
+
#### Why isn’t the ConfigMap or Secret being generated?
355
355
356
356
You can follow the steps in the [Troubleshooting](#troubleshooting) to check the logs to know the detailed reason of creating the ConfigMap failure. Here are some common problems:
357
357
358
358
-**RESPONSE 403: 403 Forbidden**: It indicates that configured authentication doesn't have the necessary permission to access the App Configuration store. Please follow the [use workload identity](./reference-kubernetes-provider.md#use-workload-identity) to ensure the associated managed identity is assigned proper role.
359
359
-**A Key Vault reference is found in App Configuration, but 'spec.secret' was not configured**: It's because a Key Vault reference is selected by the `spec.configuration.selectors` field, but the `spec.secret` field is missed to conduct the Azure App Configuration Provider how the resolve the selected Key Vault reference. Please follow the [use Key Vault reference](./reference-kubernetes-provider.md#key-vault-references) to configure the `spec.secret` field.
360
360
-**spec.configuration.selectors: one of keyFilter and snapshotName field must be set**: It's because the `spec.configuration.selectors` field is misconfigured. For each *selector*, you should either set the `keyFilter` to select key-values or `snapshotName` field to select key-values from snapshot. Please refer to the [key-value selection](./reference-kubernetes-provider.md#key-value-selection) for more information.
361
361
362
-
#### Why the crated ConfigMap doesn't have the expected data?
362
+
#### Why does the generated ConfigMap not contain the expected data?
363
363
364
-
It's usually because inaccurate `selectors` are used. You can double check the `spec.configuration.selectors` field you set in the `AzureAppConfigurationProvider` resource. Please be aware that if the `selectors` field is absent, all key-values with no label will be downloaded.
364
+
Ensure that you specify the correct key-value selectors to match the expected data. If no selectors are specified, all key-values without a label will be downloaded from your App Configuration store. When using a key filter, verify that it matches the prefix of your expected key-values. If your key-values have labels, make sure to specify the label filter in the selectors. For more examples, refer to the [key-value selection](./reference-kubernetes-provider.md#key-value-selection) documentation.
365
365
366
366
#### Can the target ConfigMap be updated after I update the key-values in the App Configuration store?
0 commit comments