Uploaded image for project: 'Red Hat OpenShift Data Science'
  1. Red Hat OpenShift Data Science
  2. RHODS-7615

Cannot create CRD Pipelines with {{ldap-provider-qe}} user

XMLWordPrintable

    • False
    • None
    • False
    • Testable
    • No
    • 1.25.0
    • No
    • OCP users with "admin" or "edit" system roles will now be able to create, update, delete, and read DataSciencePipelinesResource in an OCP cluster where Data Science Pipelines Operator is deployed.
    • No
    • Pending
    • None
    • ML Ops Sprint 1.25

      Cannot create CRD Pipelines with ldap-provider-qe user

      Prerequisites (if any, like setup, operators/versions):

      OpenShift version: 4.12.5
      Red Hat OpenShift Data Science: 1.23.0

      Steps to Reproduce

      1. Login into the cluster with "htpasswd-cluster-admin-user" and hit button on top. Add the following content and hit "Create" button 
        apiVersion: kfdef.apps.kubeflow.org/v1
kind: KfDef
metadata:
   name: data-science-pipelines-operator
spec:
   applications:
      - kustomizeConfig:
           repoRef:
              name: manifests
              path: data-science-pipelines-operator/
        name: data-science-pipelines-operator
   repos:
      - name: manifests
        uri: "https://github.com/HumairAK/odh-manifests/tarball/odh-add-dspo"
      1. Logout
      2. Login into the cluster with "ldap-admin20" and copy the login command
      3. In the Terminal,
      oc login ....
oc new-project dlovison-pipeline
oc apply -f pipeline-crd.yaml

      {}pipeline-crd.yaml{}

      apiVersion: datasciencepipelinesapplications.opendatahub.io/v1alpha1
kind: DataSciencePipelinesApplication
metadata:
  name: sample
spec:
  # One of minio or externalStorage must be specified for objectStorage
  # This example illustrates minimal deployment with minio
  # This is NOT supported and should be used for dev testing/experimentation only.
  # See dspa_simple_external_storage.yaml for an example with external connection.
  objectStorage:
    minio:
      # Image field is required
      image: 'quay.io/opendatahub/minio:RELEASE.2019-08-14T20-37-41Z-license-compliance'
  # Optional
  mlpipelineUI:
    # Image field is required
    image: 'quay.io/opendatahub/odh-ml-pipelines-frontend-container:beta-ui'

      Actual results:

      Error from server (Forbidden): error when retrieving current configuration of:
Resource: "datasciencepipelinesapplications.opendatahub.io/v1alpha1, Resource=datasciencepipelinesapplications", GroupVersionKind: "datasciencepipelinesapplications.opendatahub.io/v1alpha1, Kind=DataSciencePipelinesApplication"
Name: "sample", Namespace: "dlovison-pipeline"
from server for: "pipeline-crd.yaml": datasciencepipelinesapplications.datasciencepipelinesapplications.opendatahub.io "sample" is forbidden: User "ldap-admin20" cannot get resource "datasciencepipelinesapplications" in API group "datasciencepipelinesapplications.opendatahub.io" in the namespace "dlovison-pipeline"

      Expected results:

      datasciencepipelinesapplication.datasciencepipelinesapplications.opendatahub.io/sample created

      Reproducibility (Always/Intermittent/Only Once):

      Always

      Build Details:

      Workaround:

      Create with admin user

      Additional info:

            humairkhan Humair Khan
            dlovison@redhat.com Diego Lovison
            Diego Lovison Diego Lovison
            Diego Lovison Diego Lovison
            Votes:
            0 Vote for this issue
            Watchers:
            8 Start watching this issue

              Created:
              Updated:
              Resolved: