Description
I do not have permission to reopen #1767 but the issue persists into 2025 and needs a fix or generic workaround.
What happened (please include outputs or screenshots):
Setting the config_file variable in the config.load_kube_config arguments to point to a kube config different than the default ~/.kube/config breaks with
urllib3.exceptions.MaxRetryError: HTTPSConnectionPool(host='XXX', port=16443): Max retries exceeded with url: /api/v1/nodes (Caused by SSLError(SSLCertVerificationError(1, '[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: unable to get local issuer certificate (_ssl.c:1000)')))
(with host variable replaced by XXX) while kubectl can use the file just fine via KUBECONFIG env var.
What you expected to happen:
kubernetes-client/python should be able to use a different config than the default one.
How to reproduce it (as minimally and precisely as possible):
have a KUBECONFIG environment variable set to a kube config file different than the default ~/.kube/config file
>>> import kubernetes
>>> import os
>>> os.path.exists(os.environ["KUBECONFIG"])
True
>>> kubernetes.config.load_kube_config(os.environ["KUBECONFIG"])
>>> v1 = kubernetes.client.CoreV1Api()
>>> v1.list_node()
This throws the SSLCertVerificationError error shown above.
Anything else we need to know?:
Original ticket is #1767
Environment:
- Kubernetes version (
kubectl version): Client Version: v1.31.5 Kustomize Version: v5.4.2 Server Version: v1.30.8 - OS (e.g., MacOS 10.13.6): Ubuntu 22.04.5 LTS
- Python version (
python --version) Python 3.12.3 - Python client version (
pip list | grep kubernetes) kubernetes 31.0.0