You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I deployed the latest release using deploy manifests (not the helm chart) on Openshift 4.5
When the operator processes my cr, the following error is observed in the log:
Error creating Role Binding: rolebindings.rbac.authorization.k8s.io "some-definition-some-binding-edit" is forbidden: cannot set blockOwnerDeletion if an ownerReference refers to a resource you can't set finalizers on: ,
I added the following to the operator clusterrole, but the error persists:
apiGroups:
rbac.authorization.k8s.io
resources:
rolebindings/finalizers
verbs:
'*'
apiGroups:
'*'
resources:
deployments/finalizers
pods/finalizers
verbs:
'*'
The text was updated successfully, but these errors were encountered:
I don't have access to any openshift clusters to test, but could you try adding this to the RBAC instead? I don't think the issue is access to finalizers on any of the kube-native resources, but just the rbacDefinition CRD
I deployed the latest release using deploy manifests (not the helm chart) on Openshift 4.5
When the operator processes my cr, the following error is observed in the log:
Error creating Role Binding: rolebindings.rbac.authorization.k8s.io "some-definition-some-binding-edit" is forbidden: cannot set blockOwnerDeletion if an ownerReference refers to a resource you can't set finalizers on: ,
I added the following to the operator clusterrole, but the error persists:
resources:
verbs:
resources:
verbs:
The text was updated successfully, but these errors were encountered: