-
Bug
-
Resolution: Unresolved
-
Normal
-
None
-
4.18.z
-
Quality / Stability / Reliability
-
False
-
-
3
-
Moderate
-
None
-
None
-
None
-
None
-
None
-
None
-
None
-
None
-
None
-
None
-
None
-
None
Description of problem:
Version-Release number of selected component (if applicable):
RHOCP 4.18.z Custom Metrics Autoscaler 2.15.1-6 (stable channel)
How reproducible:
100%
Steps to Reproduce:
1. Try installing CMA operator using below YAMLs and check if openshift-keda-prometheus role and rolebinding gets created.
---
apiVersion: v1
kind: Namespace
metadata:
name: openshift-keda
labels:
openshift.io/cluster-monitoring: "true"
---
apiVersion: operators.coreos.com/v1
kind: OperatorGroup
metadata:
name: openshift-keda
namespace: openshift-keda
spec: {}
---
apiVersion: operators.coreos.com/v1alpha1
kind: Subscription
metadata:
name: openshift-custom-metrics-autoscaler-operator
namespace: openshift-keda
spec:
channel: stable
installPlanApproval: Automatic
source: redhat-operators
sourceNamespace: openshift-marketplace
name: openshift-custom-metrics-autoscaler-operator
Actual results:
openshift-keda-prometheus role and rolebinding doesn't get created.
Expected results:
openshift-keda-prometheus role and rolebinding should get created automatically.
Additional info:
openshift-keda-prometheus role and rolebinding gets created when installing CMA operator from web console. Missing rolebinding causes prometheus-k8s pods to stream below warning: ts=2025-05-15T10:21:29.257Z caller=klog.go:118 level=warn component=k8s_client_runtime func=Warningf msg="github.com/prometheus/prometheus/discovery/kubernetes/kubernetes.go:555: failed to list *v1.Service: services is forbidden: User \"system:serviceaccount:openshift-monitoring:prometheus-k8s\" cannot list resource \"services\" in API group \"\" in the namespace \"openshift-keda\""
- duplicates
-
-
- Closed
-
