Open spiffxp opened 3 years ago
/wg k8s-infra /area artifacts /sig testing /sig release /area release-eng
For reference, here's the output of gsutil iam get gs://artifacts.k8s-authenticated-test.appspot.com/
{
"bindings": [
{
"members": [
"projectEditor:k8s-authenticated-test",
"projectOwner:k8s-authenticated-test"
],
"role": "roles/storage.legacyBucketOwner"
},
{
"members": [
"allAuthenticatedUsers",
"projectViewer:k8s-authenticated-test"
],
"role": "roles/storage.legacyBucketReader"
}
],
"etag": "CAk="
}
To keep the behavior of these tests as-is using a new registry, the key part is allAuthenticatedUsers
instead of allUsers
.
That said, I question whether we should keep these tests at all, ref: https://github.com/kubernetes/kubernetes/issues/97026#issuecomment-738500525
/miletone v1.21 /sig apps test owner /sig node I think this is a more appropriate test owner for this functionality
/cc
/milestone v1.22
Issues go stale after 90d of inactivity.
Mark the issue as fresh with /remove-lifecycle stale
.
Stale issues rot after an additional 30d of inactivity and eventually close.
If this issue is safe to close now please do so with /close
.
Send feedback to sig-contributor-experience at kubernetes/community. /lifecycle stale
Stale issues rot after 30d of inactivity.
Mark the issue as fresh with /remove-lifecycle rotten
.
Rotten issues close after an additional 30d of inactivity.
If this issue is safe to close now please do so with /close
.
Send feedback to sig-contributor-experience at kubernetes/community. /lifecycle rotten
/remove-lifecycle rotten /milestone v1.23 Push to close https://github.com/kubernetes/k8s.io/issues/1458 for v1.23
/milestone v1.24
The Kubernetes project currently lacks enough contributors to adequately respond to all issues and PRs.
This bot triages issues and PRs according to the following rules:
lifecycle/stale
is appliedlifecycle/stale
was applied, lifecycle/rotten
is appliedlifecycle/rotten
was applied, the issue is closedYou can:
/remove-lifecycle stale
/lifecycle rotten
/close
Please send feedback to sig-contributor-experience at kubernetes/community.
/lifecycle stale
/remove-lifecycle stale
The Kubernetes project currently lacks enough contributors to adequately respond to all issues and PRs.
This bot triages issues and PRs according to the following rules:
lifecycle/stale
is appliedlifecycle/stale
was applied, lifecycle/rotten
is appliedlifecycle/rotten
was applied, the issue is closedYou can:
/remove-lifecycle stale
/lifecycle rotten
/close
Please send feedback to sig-contributor-experience at kubernetes/community.
/lifecycle stale
/remove-lifecycle stale /lifecycle frozen
One possible alternative discussed at https://github.com/kubernetes/kubernetes/issues/113925#issuecomment-1536115193
This project is at risk in the near future and GCR is deprecated and shutting down within a year anyhow.
Raised in #sig-node today.
copying from https://github.com/kubernetes/kubernetes/issues/113925#issuecomment-2304834317
This internal GCR will be shut down early (october?) rather than waiting for the public normal end-user GCR turn down timeline unless a Googler intervenes (internal bug: b/355704184).
It does not seem like we have sufficient interest in this test to bother continuing to deal with this problematic infrastructure, I'm somewhat inclined to preemptively shut it down now and move on.
We should not have ever been depending on a hardcoded service account key for a public authenticated endpoint in the test binaries, that was never a sustainable solution.
Part of umbrella issue to migrate away from google.com gcp projects: https://github.com/kubernetes/k8s.io/issues/1469
Part of umbrella to migrate kubernetes e2e test images/registries to community-owned infrastructure: https://github.com/kubernetes/k8s.io/issues/1458
The registry is used by the following kubernetes e2e tests:
The k8s-authenticated-test project was accidentally earlier today, and has caused these tests to fail (ref: ref: https://github.com/kubernetes/kubernetes/issues/97002#issuecomment-737435131)
We should: