kubernetes-configmap-rollouts
kubernetes-configmap-rollouts copied to clipboard
Server forbids access
Pod logs:
kubectl logs kubernetes-configmap-rollouts-7f886d9bb7-xrshg
Rerolling Deployments that use ConfigMap:
Rerolling Deployments that use Secrets:
Error from server (Forbidden): deployments.extensions is forbidden: User "system:serviceaccount:default:default" cannot list deployments.extensions in the namespace "default"
Error from server (Forbidden): deployments.extensions is forbidden: User "system:serviceaccount:default:default" cannot list deployments.extensions in the namespace "default"
The only thing I found quickly is enabling admin permissions for all pods, but it seems it's not what you should do. Is there a better way to only give this pod the proper permissions?
@steebchen unfortunately the current yaml files doesn't support RBAC how about submitting a PR with RBAC yamls?
I'm not so sure since everything is quite new for me, and for my current use case I decided to drop the configmap and simply built a custom image instead.
I could send a PR in the future, though. Could you specify what permissions are necessary? In the message above I can see deployments.extensions
but there are probably more. Thanks!