Open pwschuurman opened 2 days ago
/assign @BenTheElder
[APPROVALNOTIFIER] This PR is NOT APPROVED
This pull-request has been approved by: pwschuurman Once this PR has been reviewed and has the lgtm label, please ask for approval from bentheelder. For more information see the Kubernetes Code Review Process.
The full list of commands accepted by this bot can be found here.
Ensure the prow-build SA use KMS keys. PDCSI e2e tests use the prow-build SA by default to authenticate against the cloudkms API.
See https://prow.k8s.io/view/gs/kubernetes-jenkins/pr-logs/pull/kubernetes-sigs_gcp-compute-persistent-disk-csi-driver/1762/pull-gcp-compute-persistent-disk-csi-driver-e2e/1806716408805986304
This is analogous to the existing cluster IAM model, where
pr-kubekins@kubernetes-jenkins-pull.iam.gserviceaccount.com
hadroles/cloudkms.admin
permission.