New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
OCPBUGS-14862 Improve clarity around hypershift operator permissions #2782
Conversation
✅ Deploy Preview for hypershift-docs ready!
To edit notification comments on pull requests, go to your Netlify site configuration. |
/retest |
* The operator now expects to be able to perform ec2:RejectVpcEndpointConnections * The message of AWS errors is logged, which can help identify which AWS operation is running into errors. Signed-off-by: Michael Shen <mshen@redhat.com>
if awsErr, ok := err.(awserr.Error); ok { | ||
log.Info("AWS Error", "code", awsErr.Code(), "message", awsErr.Message()) |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Logging the error message instead of returning it because of feedback I received:
the reason we don't include the error message in the error we return is that AWS usually puts something in there that changes every time. And we update the HostedCluster status with the text from the error we return. That means that if we're constantly getting an error, we're going to be updating the HC status many times, which is not a good thing.
cc @csrwng
/retest |
/approve |
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: csrwng, mjlshen The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
/lgtm |
/cherry-pick release-4.13 |
@csrwng: once the present PR merges, I will cherry-pick it on top of release-4.13 in a new PR and assign it to you. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
/test e2e-kubevirt-aws-ovn |
/retest |
3 similar comments
/retest |
/retest |
/retest |
/retest |
@mjlshen: all tests passed! Full PR test history. Your PR dashboard. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here. |
@csrwng: new pull request created: #2810 In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
What this PR does / why we need it:
In response to feedback during QA, we should document required permissions and return AWS error messages to improve the troubleshooting experience when AWS permissions are missing.
Which issue(s) this PR fixes:
OCPBUGS-14862
Checklist