Closed MansM closed 5 months ago
Hey Mans; thanks for the suggestion, this absolutely makes sense. :+1: Maybe we could integrate this with the Helm chart values, so that we can prevent the respective RBAC rules from being deployed in the first place when using the Helm chart.
I cannot make any promises as to when someone will actually get to this; in the meantime, PRs are of course always welcome. 🙂
we might come with a PR soon. Need to discuss with some coworkers.
just to be sure:
(maybe refactor to go to per objecttype instead of per step (creation, run, etc))
do I miss something?
Do you have something on a branch already? @MansM
Is your feature request related to a problem? Please describe. Due security/risk limitations I had to bolt down the permissions of kubernetes-replicatior to only allow syncing of certain secrets, the log is now full of messages about not allowed to access certain object types
Describe the solution you'd like env variables that allow you to exclude object types (to not break backwards compability)
Describe alternatives you've considered config file isnt needed now, so why make it
Additional context Add any other context or screenshots about the feature request here.