search

h3poteto / aws-global-accelerator-controller

A Kubernetes controller for Global Accelerators and Route53
Apache License 2.0
27 stars 8 forks source link

Failed to list *v1alpha1.EndpointGroupBinding #160

Closed ruszu closed 7 months ago

ruszu commented 7 months ago

Hello.

Helm version: 0.7.1

There is an error "Failed to list *v1alpha1.EndpointGroupBinding" in the logs:

W0417 14:23:07.413229 1 reflector.go:535] pkg/mod/k8s.io/client-go@v0.28.8/tools/cache/reflector.go:229: failed to list *v1alpha1.EndpointGroupBinding: endpointgroupbindings.operator.h3poteto.dev is forbidden: User "system:serviceaccount:aws-ga-controller:aws-global-accelerator-controller-manager" cannot list resource "endpointgroupbindings" in API group "operator.h3poteto.dev" at the cluster scope

Reason:

Cluster role global-accelerator-manager-role contains wrong apiGroups for endpointgroupbindings resource. According to spec of CRD, it should be operator.h3poteto.dev instead of operator.aws.h3poteto.dev

ruszu commented 7 months ago

Here is PR for config/rbac, but please fix it at helm chart as well.

h3poteto commented 7 months ago

I updated the helm chart, please use helm chart v0.7.2.