Comments (3)
Now able to update the policy even if its attached to role but this leads to another issues
-
after updating the policy it creates one more version of policy and now we are not able to delete the policy
2020-06-15T09:47:53.417Z ERROR controllers.Policy unable to delete Policy {"policy": "kube-system/aws-cluster-autoscaler", "error": "DeleteConflict: This policy has more than one version. Before you delete a policy, you must delete the policy's versions. The default version is deleted with the policy.\n\tstatus code: 409, request id: 65d19350-d400-49e2-bfea-db3c65e5cacd"}
-
Not able to delete the policy even if policy has only default version
2020-06-17T07:55:25.767Z ERROR controllers.Policy unable to delete Policy {"policy":
"kube-system/aws-cluster-autoscaler", "error": "DeleteConflict: Cannot delete the default version
of a policy.\n\tstatus code: 409, request id: 1c600a4b-6b76-4375-a3bf-4eceb80afeb8"}
github.com/go-logr/zapr.(*zapLogger).Error
/go/pkg/mod/github.com/go-logr/[email protected]/zapr.go:128
github.com/redradrat/aws-iam-operator/controllers.(*PolicyReconciler).Reconcile
/workspace/controllers/policy_controller.go:111
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).reconcileHandler
/go/pkg/mod/sigs.k8s.io/[email protected]/pkg/internal/controller/controller.go:256
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).processNextWorkItem
/go/pkg/mod/sigs.k8s.io/[email protected]/pkg/internal/controller/controller.go:232
sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).worker
/go/pkg/mod/sigs.k8s.io/[email protected]/pkg/internal/controller/controller.go:211
k8s.io/apimachinery/pkg/util/wait.JitterUntil.func1
/go/pkg/mod/k8s.io/[email protected]/pkg/util/wait/wait.go:152
k8s.io/apimachinery/pkg/util/wait.JitterUntil
/go/pkg/mod/k8s.io/[email protected]/pkg/util/wait/wait.go:153
k8s.io/apimachinery/pkg/util/wait.Until
/go/pkg/mod/k8s.io/[email protected]/pkg/util/wait/wait.go:88
from aws-iam-operator.
@SnehaMore20 I pushed the latest update to master to prevent deleteion of the default policy version. Can you please check?
from aws-iam-operator.
This should be fixed now in master.
from aws-iam-operator.
Related Issues (20)
- EKS cluster auth mapping
- Attachment of Policy to User gives error
- Enable SAML IdP creation
- delete eks cluster HOT 2
- Setting Maximum session duration for IAM Role
- support for auto rotation of IAM user's AccessKey and Secretkey
- iam objects deletion issue (ordering required) HOT 2
- Delete & update in certain IAM resource
- Support for tags? HOT 2
- EntityAlreadyExists thrown and then deletion leads to Role 'xxxx' not yet created HOT 4
- Namespaced scoped object failing
- Remove mandatory namespace in PolicyAttachment reference
- Support 'bring your own secret store'
- Policy deletion not idempotent HOT 1
- Support tagging
- Error in importing
- Kubectl process getting stuck and does not exit HOT 1
- Add prefix to all the aws resource created by aws-iam-operator HOT 2
- updating assumerolepolicy does not update role's trust relationship
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from aws-iam-operator.