Closed sayan-biswas closed 11 months ago
The API server RBAC should include the Groups and Extra while doing a Subject Access Review
Subject Access Review doesn't consider the Groups and Extra.
Hardcoded value and empty map. Ideally should be taken from TokenReview status.
https://github.com/tektoncd/results/blob/0aa7ce4900d905dfac265bd8542e99bda451d4c7/pkg/api/server/v1alpha2/auth/rbac.go#L122-L123
Expected Behaviour
The API server RBAC should include the Groups and Extra while doing a Subject Access Review
Actual Behaviour
Subject Access Review doesn't consider the Groups and Extra.
Additional Info
Hardcoded value and empty map. Ideally should be taken from TokenReview status.
https://github.com/tektoncd/results/blob/0aa7ce4900d905dfac265bd8542e99bda451d4c7/pkg/api/server/v1alpha2/auth/rbac.go#L122-L123