results icon indicating copy to clipboard operation
results copied to clipboard

Published 20 hours ago verified publisher icon tektoncd

Delete Results data on namespace removal/termination

Open adambkaplan opened this issue 2 years ago • 5 comments

Feature request

When a namespace is deleted, ensure that all Results data related to that namespace is deleted.

Use case

  • Cleanup of data when a namespace is deleted.

Note that our authz checks rely on namespace-scoped SAR checks - if a namespace is deleted, only users with elevated permissions may access Results data.

adambkaplan avatar Dec 06 '22 22:12 adambkaplan

Issues go stale after 90d of inactivity. Mark the issue as fresh with /remove-lifecycle stale with a justification. Stale issues rot after an additional 30d of inactivity and eventually close. If this issue is safe to close now please do so with /close with a justification. If this issue should be exempted, mark the issue as frozen with /lifecycle frozen with a justification.

/lifecycle stale

Send feedback to tektoncd/plumbing.

tekton-robot avatar Mar 06 '23 23:03 tekton-robot

/lifecycle frozen

This is something we should keep on the roadmap.

adambkaplan avatar Mar 07 '23 22:03 adambkaplan

/area roadmap

adambkaplan avatar Mar 07 '23 22:03 adambkaplan

This should be implemented in the feature flag way because there are use-cases where we want to access logs/metadata when a namespace is deleted.

khrm avatar Mar 09 '23 09:03 khrm

This should be implemented in the feature flag way because there are use-cases where we want to access logs/metadata when a namespace is deleted.

Something to verify is if SAR checks work if the namespace is deleted, but the user accessing the record has cluster-scoped permission to view the data in Results.

adambkaplan avatar Mar 31 '23 19:03 adambkaplan