Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Critical
Fix Version/s: 4.15.0
Affects Version/s: 4.15
Component/s: Cloud Credential Operator
Labels:
None

Regression:
No
Release Blocker:
Rejected
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Release Note Text:
N/A
Release Note Type:
Release Note Not Required
Target Version:

4.15
Target Backport Versions:

4.15

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Description of problem:

   The GCP Mint mode sync is failing when attempting to add permissions to a previously deleted custom role.

Version-Release number of selected component (if applicable):

    4.15

How reproducible:

    Always

Steps to Reproduce:

    1. Create a gcp cluster in mint mode (with a CCO credentialRequests that has permissions defined)
    2. Delete the openshift-hive-dev-cloud-credential-operator-gcp-ro-creds custom role from GCP
    3. oc -n openshift-cloud-credential-operator delete secret cloud-credential-operator-gcp-ro-creds

Actual results:

    Receive the following error when attempting to add permissions to the deleted custom role: "cloud-credential-operator cannot add new grants to deleted gcp role"

Expected results:

    The new permissions should be added to the role without issue.

Additional info:

blocks

SDN-4158 Update GCP Credentials Request manifest of the Cluster Network Operator to use new API field for requesting permissions

Closed

is related to

CCO-285 GCP openshift role granularity enhancement - phase 2

Closed

OCPSTRAT-243 Custom roles for GCP Workload Identity

Closed

links to

openshift/cloud-credential-operator#637: OCPBUGS-23178: Enable GCP sync to undelete custom roles

Assignee:: Jeremiah Stuever

Reporter:: Jeremiah Stuever

QA Contact:: Mingxia Huang

Votes:: 0 Vote for this issue

Watchers:: 6 Start watching this issue

Created:: 2023/11/10 10:19 PM

Updated:: 2024/11/13 5:14 PM

Resolved:: 2024/11/13 5:14 PM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates