Uploaded image for project: 'Couchbase Kubernetes'
  1. Couchbase Kubernetes
  2. K8S-2322

Add owner ref admission controller to CICD

    XMLWordPrintable

Details

    • Improvement
    • Status: Open
    • Minor
    • Resolution: Unresolved
    • None
    • None
    • operator, testing
    • None
    • 1

    Description

      Consider adding https://kubernetes.io/docs/reference/access-authn-authz/admission-controllers/#ownerreferencespermissionenforcement admission controller to dev CICD so we can pick up problems with OCP sooner.

       

      kind: Cluster
      apiVersion: kind.x-k8s.io/v1alpha4
      nodes:
      - role: control-plane
        kubeadmConfigPatches:
        - |
          kind: ClusterConfiguration
          apiServer:
              extraArgs:
                enable-admission-plugins: OwnerReferencesPermissionEnforcement
      

       

      Attachments

        Issue Links

          No reviews matched the request. Check your Options in the drop-down menu of this sections header.

          Activity

            patrick.stephens Patrick Stephens (Inactive) created issue -
            patrick.stephens Patrick Stephens (Inactive) made changes -
            Field Original Value New Value
            Link This issue relates to K8S-2205 [ K8S-2205 ]
            patrick.stephens Patrick Stephens (Inactive) made changes -
            Link This issue relates to K8S-2210 [ K8S-2210 ]
            patrick.stephens Patrick Stephens (Inactive) made changes -
            Link This issue relates to K8S-1734 [ K8S-1734 ]
            patrick.stephens Patrick Stephens (Inactive) made changes -
            Description Consider adding [https://kubernetes.io/docs/reference/access-authn-authz/admission-controllers/#ownerreferencespermissionenforcement] admission controller to dev CICD so we can pick up problems with OCP sooner. Consider adding [https://kubernetes.io/docs/reference/access-authn-authz/admission-controllers/#ownerreferencespermissionenforcement] admission controller to dev CICD so we can pick up problems with OCP sooner.

             
            {noformat}
            kind: Cluster
            apiVersion: kind.x-k8s.io/v1alpha4
            nodes:
            - role: control-plane
              kubeadmConfigPatches:
              - |
                kind: ClusterConfiguration
                apiServer:
                    extraArgs:
                      enable-admission-plugins: OwnerReferencesPermissionEnforcement
            {noformat}
             
            simon.murray Simon Murray made changes -
            Rank Ranked higher
            simon.murray Simon Murray made changes -
            Rank Ranked higher
            simon.murray Simon Murray made changes -
            Rank Ranked higher

            People

              simon.murray Simon Murray
              patrick.stephens Patrick Stephens (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:

                Gerrit Reviews

                  There are no open Gerrit changes

                  PagerDuty