Skip to content

Add Cluster Roles to auto-reconcile user facing roles #335

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
Mascarenhas12 opened this issue Jul 21, 2024 · 2 comments · May be fixed by #336
Closed

Add Cluster Roles to auto-reconcile user facing roles #335

Mascarenhas12 opened this issue Jul 21, 2024 · 2 comments · May be fixed by #336
Labels
Stale

Comments

@Mascarenhas12
Copy link

What did you do to encounter the bug?
Kubernetes has some default user-facing roles (admin, edit, view) which can be auto-reconciled based on labels. User-Facing Roles
This way, new custom resources can be added to the standard permissions automatically.
This is particularly useful for cluster admins to give standardized roles to users (ex: Rancher project admin, member, reader permissions).

What did you expect?
When mongodb operator is installed:

  • Default admin role should have permission to all verbs the CR API Group: mongodbcommunity.mongodb.com
  • Default edit role should have permission to write verbs the CR API Group: mongodbcommunity.mongodb.com
  • Default view role should have permission to read verbs the CR API Group: mongodbcommunity.mongodb.com

Admin can/should be combination of edit and view roles instead of a separate role by itself.
See Fluxcd's example: Flux User Edit Role
What happened instead?
User facing roles are not auto-reconciled.
Mascarenhas12 pushed a commit to Mascarenhas12/mongodb-operator-chart that referenced this issue Jul 21, 2024
[community-operator Hem chart]: User Role Aggregation
8c8dd2a 
Closes mongodb#335
@Mascarenhas12 Mascarenhas12 mentioned this issue Jul 21, 2024
Open
4 tasks
@github-actions GitHub Actions
Copy link
Contributor

This issue is being marked stale because it has been open for 60 days with no activity. Please comment if this issue is still affecting you. If there is no change, this issue will be closed in 30 days.

@github-actions github-actions bot added the Stale label Sep 20, 2024
@github-actions GitHub Actions
Copy link
Contributor

This issue was closed because it became stale and did not receive further updates. If the issue is still affecting you, please re-open it, or file a fresh Issue with updated information.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Stale
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

[community-operator Helm chart]: User Role Aggregation Mascarenhas12/mongodb-operator-chart
1 participant
@Mascarenhas12