fix(rbac): controller should not be able to read all secrets

padok-team / burrito

🌯 Burrito is a TACoS 🌮

https://padok-team.github.io/burrito

Apache License 2.0

234 stars 9 forks source link

fix(rbac): controller should not be able to read all secrets #278

Open LucasMrqes opened 1 month ago

LucasMrqes commented 1 month ago

Controller has RBAC permissions to access secrets in any namespace to access TLS certificates in each tenant ; the RBAC configuration should follow least privilege principles