New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
InAnyNamespace uses invalid api endpoint for SelfSubjectAccessReviews #2265
Comments
I think we need to revisit |
The error I'm getting is "Namespace not specified. But operation requires namespace":
But if I set the namespace in the the metadata of SelfSubjectAccessReview:
This bug makes SelfSubjectAccessReview useless. |
+ Added new entrypoint authorization() into DSL which only allows create() operations + Removed old subjectAccessReviewAuth() API This should also fix fabric8io#2191
I have created a PR to fix this issue. I have removed old API(not sure it was usable before). Now you can access
|
+ Added new entrypoint authorization() into DSL which only allows create() operations + Removed old subjectAccessReviewAuth() API This should also fix fabric8io#2191
+ Added new entrypoint authorization() into DSL which only allows create() operations + Removed old subjectAccessReviewAuth() API This should also fix fabric8io#2191
+ Added new entrypoint authorization() into DSL which only allows create() operations + Removed old subjectAccessReviewAuth() API This should also fix fabric8io#2191
+ Added new entrypoint authorization() into DSL which only allows create() operations + Removed old subjectAccessReviewAuth() API This should also fix fabric8io#2191
+ Added new entrypoint authorization() into DSL which only allows create() operations + Removed old subjectAccessReviewAuth() API This should also fix fabric8io#2191
I am trying to verify if the current context user has permissions to create a deployment in a given namespace
Which causes this error
It seems like there shouldn't be a /namespaces/ in the endpoint as
Running
kubectl --v=8 auth can-i create deployments --namespace test
shows that the endpoint ishttps://kubernetes.docker.internal:6443/apis/authorization.k8s.io/v1/selfsubjectaccessreviews
.Is there a reason namespaces is set to true when instantiating a Createable for inAnyNamespace as seen here?
since that is what seems to be causing the endpoint to include /namespaces/
The text was updated successfully, but these errors were encountered: