Closed monotykamary closed 5 years ago
kubeval currently does a bad job of dealing with api versions of resources, some details in #57 and a potential fix in #63. I've unfortunately not had the time to address this yet.
I think this may now be resolved. The latest version 0.8.0 has new support for individual object versions. Let me know if that doesn't work and I'll try and take a closer look.
After generating schemas for OpenShift v3.9.0, validating any k8s rbac:
results in:
This is because there are 2 group definitions of ClusterRoleBinding:
in which the one defined by
authorization.openshift.io
requires propertiesuserNames
andgroupNames
.