From 95b61802befbd14b32ac94ba12b6406cd4c8914e Mon Sep 17 00:00:00 2001 From: OG T Date: Sat, 11 Apr 2026 09:59:29 +0800 Subject: [PATCH] =?UTF-8?q?fix(mcp):=20ssh-mcp-key=20volumeMount=20?= =?UTF-8?q?=E8=B7=AF=E5=BE=91=E4=BF=AE=E6=AD=A3=20=E2=80=94=20subPath=20?= =?UTF-8?q?=E5=B0=8D=E9=BD=8A=20ssh=5Fprovider.py?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit - ssh_mcp_key → /run/secrets/ssh_mcp_key (SSH_KEY_PATH) - known_hosts → /etc/ssh-mcp/known_hosts (SSH_MCP_KNOWN_HOSTS_FILE) 同步: K8s Secret 重建(含 ssh_mcp_key + known_hosts) 188/110 authorized_keys 已加入公鑰 SSH 連線驗證: 188 OK / 110 OK Co-Authored-By: Claude Sonnet 4.6 --- k8s/awoooi-prod/06-deployment-api.yaml | 9 ++++++++- 1 file changed, 8 insertions(+), 1 deletion(-) diff --git a/k8s/awoooi-prod/06-deployment-api.yaml b/k8s/awoooi-prod/06-deployment-api.yaml index e9a22c0c..f2a8dfec 100644 --- a/k8s/awoooi-prod/06-deployment-api.yaml +++ b/k8s/awoooi-prod/06-deployment-api.yaml @@ -72,8 +72,15 @@ spec: subPath: service-registry.yaml readOnly: true # MCP Phase 2a (2026-04-11 Claude Sonnet 4.6): SSH MCP key + # ssh_mcp_key → /run/secrets/ssh_mcp_key (SSH_KEY_PATH in ssh_provider.py) + # known_hosts → /etc/ssh-mcp/known_hosts (SSH_MCP_KNOWN_HOSTS_FILE) - name: ssh-mcp-key - mountPath: /etc/ssh-mcp + mountPath: /run/secrets/ssh_mcp_key + subPath: ssh_mcp_key + readOnly: true + - name: ssh-mcp-key + mountPath: /etc/ssh-mcp/known_hosts + subPath: known_hosts readOnly: true resources: requests: