Bug 1868801: check-endpoints should use minimal credentials

[sanchezl]

• create a kubeconfig for use by the check-endpoints tool when running in the kube-apiserver pod.
• use the kubeconfig.

[openshift-ci-robot]

Skipping CI for Draft Pull Request.
If you want CI signal for your change, please convert it to an actual PR.
You can still manually trigger a test run with /test all

[sanchezl]

/test all

[openshift-ci-robot]

@sanchezl: This pull request references Bugzilla bug 1868801, which is valid. The bug has been moved to the POST state. The bug has been updated to refer to the pull request using the external bug tracker.

3 validation(s) were run on this bug

• bug is open, matching expected state (open)
• bug target release (4.6.0) matches configured target release for branch (4.6.0)
• bug is in the state NEW, which is one of the valid states (NEW, ASSIGNED, ON_DEV, POST, POST)

In response to this:

Bug 1868801: check-endpoints should use minimal credentials

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[sanchezl]

/bugzilla refresh

[openshift-ci-robot]

@sanchezl: This pull request references Bugzilla bug 1868801, which is valid.

3 validation(s) were run on this bug

• bug is open, matching expected state (open)
• bug target release (4.6.0) matches configured target release for branch (4.6.0)
• bug is in the state POST, which is one of the valid states (NEW, ASSIGNED, ON_DEV, POST, POST)

In response to this:

/bugzilla refresh

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[sanchezl]

/retest

[sanchezl]

/test e2e-aws-operator

[deads2k]

system:openshift:operator?:kube-apiserver-check-endpoints

Looks to see what fits best in operator.

[deads2k]

this part can be a clusterrole so you can re-use it.

Also, the name system:openshift:operator?:check-endpoints

[deads2k]

better name, you get the idea now.

[sanchezl]

/test e2e-aws-serial
/test e2e-aws-operator

[sanchezl]

/test e2e-aws-serial
/test e2e-aws-operator

[sanchezl]

/test e2e-aws-serial

[sanchezl]

/test e2e-aws-serial

[deads2k]

needs to be named with kube-apiserver in teh name to avoid conflicts, right?

[deads2k]

needs kube-apiserver in name to avoid conflict

[deads2k]

name it like a service account (double check this): system:serviceaccount:namespace:name

[sanchezl]

/test e2e-aws-upgrade
/test k8s-e2e-gcp

[deads2k]

/lgtm

[openshift-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: deads2k, sanchezl

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• OWNERS [deads2k]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[openshift-bot]

/retest

Please review the full test history for this PR and help us cut down flakes.

[openshift-bot]

/retest

Please review the full test history for this PR and help us cut down flakes.

[openshift-bot]

/retest

Please review the full test history for this PR and help us cut down flakes.

[openshift-bot]

/retest

Please review the full test history for this PR and help us cut down flakes.

[openshift-ci-robot]

@sanchezl: All pull requests linked via external trackers have merged:

• openshift/cluster-kube-apiserver-operator#931

Bugzilla bug 1868801 has been moved to the MODIFIED state.

In response to this:

Bug 1868801: check-endpoints should use minimal credentials

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.