eventing icon indicating copy to clipboard operation
eventing copied to clipboard

Published 20 hours ago verified publisher icon knative

Overly permissive ClusterRole permissions

Open a7i opened this issue 2 years ago • 4 comments

Describe the bug knative-eventing-controller ClusterRole is overly permissive. For example, why does knative-eventing require the deletion of events or namespaces?

https://github.com/knative/eventing/blob/db235e7b704c37b5e64cd1a62b5760b3829507ff/config/core/roles/controller-clusterroles.yaml#L26-L42

Expected behavior Reduce permissions to only require what is needed by knative-eventing

To Reproduce N/A

Knative release version v1.6.0

Additional context Add any other context about the problem here such as proposed priority

a7i avatar Aug 25 '22 13:08 a7i

This issue is stale because it has been open for 90 days with no activity. It will automatically close after 30 more days of inactivity. Reopen the issue with /reopen. Mark the issue as fresh by adding the comment /remove-lifecycle stale.

github-actions[bot] avatar Nov 24 '22 01:11 github-actions[bot]

/remove-lifecycle stale

pierDipi avatar Nov 24 '22 08:11 pierDipi

/triage accepted

pierDipi avatar Nov 24 '22 08:11 pierDipi

/assign

gab-satchi avatar Dec 01 '22 15:12 gab-satchi