We're running with multitenancy.enabled=true and multitenancy.privileged=false. With 2.x.x we observe the following issue:
[...] helm-controller reconciliation failed: failed to get last release revision: query: failed to query with labels:
serviceaccounts "flux-admin" is forbidden: User "system:serviceaccount:flux-system:helm-controller"
cannot impersonate resource "serviceaccounts" in API group "" in the namespace "admin"
This is due to the role pointing to resource serviceAccount instead of serviceaccount.
We're running with
multitenancy.enabled=true
andmultitenancy.privileged=false
. With 2.x.x we observe the following issue:This is due to the role pointing to resource
serviceAccount
instead ofserviceaccount
.What this PR does / why we need it:
Which issue this PR fixes
N/A
Special notes for your reviewer:
Checklist
make reviewable