-
Notifications
You must be signed in to change notification settings - Fork 66
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add permission RBAC to access endpoints #2728
Conversation
With OVN IC submariner operator needs read access to endpoints to understand the current topology Signed-off-by: Aswin Suryanarayanan <[email protected]>
🤖 Created branch: z_pr2728/aswinsuryan/ovn-rbac |
Can you explain why? And why not EndpointSlices? |
@tpantelis This for OVN, ovn creates endpoints without a service if IC is enabled in multiple nodes per zone configuration. No endpoints will be created if it is in single zone per node configuration. We need this information to decide how we should connect to ovndb Since the number of endpoints will be less than number of nodes , I don't think they will have plan to move to endpoint slices. If they move in future , we will have to update too. |
This will be used by #2726 |
E2E (1.25, ovn) timed out, re-running. |
🤖 Closed branches: [z_pr2728/aswinsuryan/ovn-rbac] |
With OVN IC submariner operator needs read access to endpoints to understand the OVN topology
Fixes: submariner-io/enhancements#191