New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
fix: Use roles instead of cluster roles for SBJ #301
Conversation
@Gregory-Pereira: GitHub didn't allow me to request PR reviews from the following users: securesign/qe. Note that only securesign members and repo collaborators can review this PR, and authors cannot review their own PRs. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: Gregory-Pereira The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
@Gregory-Pereira I am seeing this in the e2e test logs
|
The konflux build failed on
|
These errors I think are due to the wrong default toggle in the |
92554fe
to
c448108
Compare
Owner references have to be dropped:
For more information see the |
01d7ed8
to
91fcf37
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
You can remove resources without ownership in the finalizer section (see https://github.com/securesign/secure-sign-operator/blob/main/controllers/securesign/securesign_controller.go#L97)
@Gregory-Pereira Just a thought feel free to ignore if I'm wrong (I probably am), Is there a reason we need to check these config maps to see if telemetry is enabled, Can we just add a field to the API, maybe |
I am not sure that would work, these checks to see how / if monitoring were disabled were explicitly shared with me at product management (see jira: https://issues.redhat.com/browse/CONSOLE-3944 ). I think we are required to check in these pre-established ways to see if monitoring is disabled. |
Ahhhhhhh Ok yea, I figured something like this applied, just wanted to make sure, thanks. |
91fcf37
to
13303c6
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
/lgtm
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I think that we should use only one method to decide if analytics should be enabled. Right now CanHandle and Handle method uses different method (annotation/spec api).
I do not know what was the reason to introduce spec.Analytics
into API, if original purpose was to disable analytics by default than it could be removed and we can depend only on annotation.
fe28b2a
to
81ecb44
Compare
@osmman I've removed the patch from the config map, will update the image with the proper one on monday, if you want to test you can use this one: |
81ecb44
to
ba2db83
Compare
/hold |
ba2db83
to
3aa5393
Compare
3aa5393
to
8a089d9
Compare
I tested it and it works without problem for me |
@osmman Sorry, when you say it worked, are you referring to the pr as a whole? I'm just not sure if you are referring to #301 (comment) or not? |
As a whole PR |
/unhold |
Signed-off-by: greg pereira <grpereir@redhat.com>
8a089d9
to
791711c
Compare
/lgtm |
/cc @securesign/qe @lance