Open foot opened 2 years ago
cc @luizbafilho @jpellizzari does this make sense? It was just surprising is all it might be working as intended. I understand you should have all the permissions there.
We can try and repro it properly, as there might have been some permission polution on demo-01...
@foot If you are requesting a resource specifically, it might error out if you don't have permissions for that NS.
If it is a list
, it should just skip the namespace. For a user to have "access" to a NS, they need a role that (minimally) matches this:
Still relevant/something we want to keep open?
Still relevant/something we want to keep open?
@foot Is this still an issue?
After #905 was merged into
main
, and after logging in aswego-admin
to demo-01. Navigating to Applications failed, citingwego-admin
not having permissions to list helm-releases in thedefault
namespace.wego-admin
doesn't have much access to default, it had a cluster-role-bindings for:With the new bit on the end (
events
) which seems to have broken things...