Notes for Reviewers:
To test it remove your SP from the access policy on the vault
Recreate your pod
After this change when you describe the pod you should see something like:
Warning FailedMount 86s (x17 over 20m) kubelet, kind-control-plane MountVolume.SetUp failed for volume "test" : mount command failed, status: Failure, reason: /usr/libexec/kubernetes/kubelet-plugins/volume/exec/azure~kv/azurekeyvault-flexvolume failed, Access denied. Caller was not found on any access policy. Caller: appid=****;oid=****;numgroups=0;iss=https://sts.windows.net/****/ Vault: ****;location=uksouth InnerError={code:AccessDenied}
Reason for Change: Fixes no access to vault error not showing up in pod description
Issue Fixed: Fixes https://github.com/Azure/kubernetes-keyvault-flexvol/issues/121
Notes for Reviewers: To test it remove your SP from the access policy on the vault Recreate your pod
After this change when you describe the pod you should see something like: