-
Notifications
You must be signed in to change notification settings - Fork 3.1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
fix(server): Add list sa
and create secret
to argo-server
roles. Closes #4526
#4514
Conversation
list permission is required on serviceaccounts: |
Signed-off-by: boolman <boolman@gmail.com>
Signed-off-by: boolman <boolman@gmail.com>
Please run |
I'm not 100% sure we should add @jessesuen thoughts? |
list sa
and create secret
to argo-server
roles. Closes #4526
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Needs back-porting to v2.12.0-rc3
@Boolman Can you fix the codegen and DCO? We are targeting this PR for RC3 release |
Signed-off-by: boolman <boolman@gmail.com>
I dont understand why the codegen fails, it reports no change in my local branch. |
So long as this is in the namespace of the argo-server, I don't see a problem with it |
This looks good, but it needs either (a) run
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Changes requested
Signed-off-by: boolman <boolman@gmail.com>
LGTM |
…Closes argoproj#4526 (argoproj#4514) Signed-off-by: boolman <boolman@gmail.com> Signed-off-by: Alex Capras <alexcapras@gmail.com>
In 2.12.0-rc1 when using SSO RBAC - argo fails to create the secret, due to missing permissions in the argo-server-role
https://github.com/argoproj/argo/blob/0931baf5fbe48487278b9a6c2fa206ab02406e5b/server/auth/sso/sso.go#L135-L138