Skip to content

Commit 2d1953e

Browse files
RafalKoreptaRafalKorepta
committed
Add HorizontalPodAutoscaler permission for operator role
The Certificate from cert-manager customer resource was not added to permission set for operator Role. The operator during GC operation log the following message: ``` W1106 11:46:57.392913 1 reflector.go:547] pkg/mod/k8s.io/[email protected]/tools/cache/reflector.go:232: failed to list *v1.Certificate: certificates.cert-manager.io is forbidden: User "system:serviceaccount:redpanda:redpanda-operator" cannot list resource "certificates" in API group "cert-manager.io" in the namespace "redpanda" E1106 11:46:57.392992 1 reflector.go:150] pkg/mod/k8s.io/[email protected]/tools/cache/reflector.go:232: Failed to watch *v1.Certificate: failed to list *v1.Certificate: certificates.cert-manager.io is forbidden: User "system:serviceaccount:redpanda:redpanda-operator" cannot list resource "certificates" in API group "cert-manager.io" in the namespace "redpanda" ```
1 parent 3913fe5 commit 2d1953e

File tree

2 files changed

+2
-2
lines changed

2 files changed

+2
-2
lines changed

charts/operator/rbac.go

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -522,7 +522,7 @@ func Roles(dot *helmette.Dot) []rbacv1.Role {
522522
Resources: []string{"jobs"},
523523
},
524524
{
525-
Verbs: []string{"create", "delete", "get", "patch", "update"},
525+
Verbs: []string{"create", "delete", "get", "patch", "update", "list"},
526526
APIGroups: []string{"cert-manager.io"},
527527
Resources: []string{"certificates"},
528528
},

0 commit comments

Comments
 (0)