Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[backport v2.9] GitRepoRestrictions not defaulting the GitRepo #3083

Closed
rancherbot opened this issue Nov 15, 2024 · 1 comment
Closed

[backport v2.9] GitRepoRestrictions not defaulting the GitRepo #3083

rancherbot opened this issue Nov 15, 2024 · 1 comment
Assignees
@manno
Labels
kind/bug status/waiting-for-fleet-rc-and-chart
Milestone
v2.9.5

Comments

@rancherbot
Copy link
Collaborator

This is a backport issue for #3077, automatically created via GitHub Actions workflow initiated by @manno

Original issue body:

GitRepoRestriction resources can be used to default GitRepos and restrict their values.

Default values for GitRepo resources, configured through a GitRepoRestriction resource are not applied, although the restrictions remain functional.

  • defaultServiceAccount
  • defaultClientSecretName

See #3056
@rancherbot rancherbot added this to the v2.9.5 milestone Nov 15, 2024
@rancherbot rancherbot added this to Fleet Nov 15, 2024
@github-project-automation github-project-automation bot moved this to 🆕 New in Fleet Nov 15, 2024
@manno manno mentioned this issue Nov 15, 2024
Merged
@manno manno moved this from 🆕 New to 🏗 In progress in Fleet Nov 15, 2024
@mmartin24
Copy link
Collaborator

mmartin24 commented Nov 15, 2024
edited
Loading

Tested as described in #3077 (comment).
QASE link: Fleet-153

Verified error in Rancher v2.9-023781e52103c45a9bbdf3cb47d60b9336321daa-head with fleet fleet:0.10.5 and then working when pointing to fleet image v0.10.6-rc.1:

  • Before fix:

Gitreporestriction is empty in job container and allows gitrepo to be deployed even when service account does not set right permissions:
2024-11-15_15-43

  • After fix:

Gitreporestriction is not empty and prevents gitrepo from being successfully deployed when service accounts lacks proper permissions:
2024-11-15_15-48

@manno manno moved this from 🏗 In progress to ✅ Done in Fleet Nov 27, 2024
@manno manno closed this as completed Nov 27, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@manno manno

Labels
kind/bug status/waiting-for-fleet-rc-and-chart
Projects
Fleet
Status: Done
Milestone
v2.9.5
Development

No branches or pull requests
3 participants
@manno @mmartin24 @rancherbot