Loading...

XML

Word

Printable

Type: Bug
Resolution: Unresolved
Priority: Normal
Fix Version/s: None
Affects Version/s: 4.19
Component/s: Cloud Compute / Machine API Providers
Labels:
- pre-merge-tested

Severity:
Low
Regression:
None
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Target Version:

4.19.0

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Description of problem:

Cluster-reader couldn't able to view controlplancemachineset resources

Version-Release number of selected component (if applicable):

4.19.0-0.ci-2024-12-15-181719

How reproducible:

Always

Steps to Reproduce:

1. Add cluster-reader role to a common user     
$ oc adm policy add-cluster-role-to-user cluster-reader testuser-48 --as system:admin     
3. Login in the cluster with the common user
$ oc login -u testuser-48
Authentication required for https://api.zhsungcp58.qe.gcp.devcluster.openshift.com:6443 (openshift)
Username: testuser-48
Password: 
Login successful.
4. Check cluster-reader could view controlplancemachineset resources.

Actual results:

cluster-reader couldn't view controlplancemachineset resources    
$ oc get controlplanemachineset      
Error from server (Forbidden): controlplanemachinesets.machine.openshift.io is forbidden: User "testuser-48" cannot list resource "controlplanemachinesets" in API group "machine.openshift.io" in the namespace "openshift-machine-api"

Expected results:

cluster-reader could view controlplanemachinesets resources

Additional info:

links to

openshift/machine-api-operator#1316: OCPBUGS-46433: Add cluster-reader to controlplanemachinesets resource

Assignee:: Zhaohua Sun

Reporter:: Zhaohua Sun

QA Contact:: Zhaohua Sun

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 2024/12/16 6:51 AM

Updated:: 2025/01/10 8:24 AM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates