With the current ClusterRole, there is a permissions issue in the logs, when using the latest version of the cloudwatch-metrics image.
failed to list *v1.Service: services is forbidden: User "system:serviceaccount:kube-system:aws-cloudwatch-metrics" cannot list resource "services" in API group "" in the namespace "kube-system"
Description of changes
Add services list/watch permissions to the ClusterRole.
By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
Issue
With the current ClusterRole, there is a permissions issue in the logs, when using the latest version of the cloudwatch-metrics image.
Description of changes
Add
services
list/watch permissions to the ClusterRole.By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.