search

sighupio / permission-manager

Permission Manager is a project that brings sanity to Kubernetes RBAC and Users management, Web UI FTW
https://sighup.io/
BSD 3-Clause "New" or "Revised" License
1.3k stars 171 forks source link

Broken access view in UI for custom template #84

Open andrey-gava opened 3 years ago

andrey-gava commented 3 years ago

I was in need to create access rights for user to read resources in only one specific namespace. So I created ClusterRole:

apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole
metadata:
  name: template-namespaced-resources___readonly
rules:
- apiGroups:
  - '*'
  resources:
  - configmaps
  - endpoints
  - persistentvolumeclaims
  - pods
  - pods/log
  - pods/portforward
  - podtemplates
  - replicationcontrollers
  - resourcequotas
  - secrets
  - services
  - events
  - daemonsets
  - deployments
  - replicasets
  - ingresses
  - networkpolicies
  - poddisruptionbudgets
  - statefulsets
  - tlsstores
  - middlewares
  verbs:
  - get
  - list
  - watch

Despite granted access rights works, and user can read needed resources, the grunted rights not shown in UI poperly. изображение

изображение

Its same for v1.6 and 1.7.1-rc1

luigibarbato commented 1 year ago

Hi @andrey-gava Can you check if the bus is still present on the latest version? (v1.8.0 actually)

Thank you so much for your contribution ⭐