Uploaded image for project: 'OpenShift Service Mesh'
  1. OpenShift Service Mesh
  2. OSSM-3995

maistra test tool: create test case for cluster wide regarding privileges of the user

    XMLWordPrintable

Details

    Description

      We need to create a test case to fill this condition: https://issues.redhat.com/browse/OSSM-3567

      Tested manually first with these scenarios:

      • If the user foo tries to add a member to the SMMR will receive a notification that is not allowed due to permissions:
      admission webhook "smmr.validation.maistra.io" denied the request: user 'foo' does not have permission to access namespace(s): [bookinfo]
      • If tries to add ‘*’ will receive a notification also:
      admission webhook "smmr.validation.maistra.io" denied the request: only users that are allowed to update pods at the cluster scope are allowed to use wildcards or member selectors; user foo does not have that permission
      • But if he updates with and namespace with privileges he will be able to update

      Attachments

        Activity

          People

            frherrer@redhat.com Francisco Herrera Lira
            frherrer@redhat.com Francisco Herrera Lira
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: