secret isn't blocked for non-admin user but secrets is #64
Labels
bug
Something isn't working
triage/accepted
Indicates an issue or PR is ready to be actively worked on.
Expected vs actual behavior
If you run
kubectl get secret
for a read-only user then it works, whereaskubectl get secrets
doesn't.Steps to reproduce the bug
kubectl get pods -o json | jq '.items[].spec.containers[].env[]?.valueFrom.secretKeyRef.name' | grep -v null | uniq
command for authorized namespacekubectl get secret <secret_name>
and it worksAre you using the latest version of the project?
Using version 2.0
What is your environment setup? Please tell us your cloud provider, operating system, and include the output of
kubectl version --output=yaml
andhelm version
. Any other information that you have, eg. logs and custom values, is highly appreciated!Kubernetes 1.24
(optional) If you have ideas on why the bug happens or how it can be solved, please provide it here
The guard against secrets should be a wildcard so that it can protect against
secret
andsec
The text was updated successfully, but these errors were encountered: