-
Notifications
You must be signed in to change notification settings - Fork 197
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
IAMPolicyMember locked hand on delete attempt #296
Comments
Hi @b4nst, sorry you ran into this. It looks like In order to actually delete this faulty IAMPolicyMember, you can abandon the resource by adding & applying the |
Oh that makes sense, I didn't think about abandoning it. Works fine, thanks ! |
Describe the bug
I made a typo in the version of the referenced IAM service account for an IAM policy member (v1alpha1 instead of v1beta1). Config connector correctly logged the error (
[...] no match for kind IAMServiceAccount in version iam.cnrm.cloud.google.com/v1alpha1
) but then the policy member could be deleted.kubectl delete
logs that the iampolicymember has been deleted (it has not) and then hangs forever.ConfigConnector Version
1.19.1
To Reproduce
Steps to reproduce the behavior:
kubectl apply -f sa.yml
kubectl delete iampolicymember gsa-wli
YAML snippets:
The text was updated successfully, but these errors were encountered: