Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Report permission issue in MachineDeployment #501

Closed
timuthy opened this issue Aug 20, 2020 · 3 comments
Closed

Report permission issue in MachineDeployment #501

timuthy opened this issue Aug 20, 2020 · 3 comments
Labels
area/usability Usability related kind/enhancement Enhancement, improvement, extension lifecycle/stale Nobody worked on this for 6 months (will further age) priority/backlog Issues which needs implementation

Comments

@timuthy
Copy link
Member

timuthy commented Aug 20, 2020
edited
Loading

What would you like to be added:
If new instances for an existing MachineDeployment cannot be created because of insufficient permissions or unauthorized requests to the cloud provider, then this should be reflected in the MachineDeployment's status.

At the moment the status reports:

  status:
    availableReplicas: 1
    conditions:
    - lastTransitionTime: "2020-08-20T06:34:48Z"
      lastUpdateTime: "2020-08-20T06:34:48Z"
      message: Deployment does not have minimum availability.
      reason: MinimumReplicasUnavailable
      status: "False"
      type: Available
    observedGeneration: 7
    readyReplicas: 1
    replicas: 2
    unavailableReplicas: 1
    updatedReplicas: 2

Logs:

E0820 06:55:10.287516       1 driver_gcp.go:273] googleapi: Error 403: Required 'compute.instances.list' permission for 'projects/<redacted>', forbidden
E0820 06:55:10.287559       1 machine.go:394] Failed to list VMs before creating machine "shoot--dev--shoot66082-cpu-worker-z1-675f98d766-rdn4k" googleapi: Error 403: Required 'compute.instances.list' permission for 'projects/<redacted>, forbidden

Why is this needed:
Gardener reports the status to users and thus it gives them a chance to fix the issue w/o support from operations.
@timuthy timuthy added the kind/enhancement Enhancement, improvement, extension label Aug 20, 2020
@hardikdr hardikdr added the priority/backlog Issues which needs implementation label Aug 20, 2020
@hardikdr
Copy link
Member

/add area/usability

@gardener-robot gardener-robot added the area/usability Usability related label Aug 20, 2020
@timuthy
Copy link
Member Author

timuthy commented Aug 20, 2020

Probably a duplicate of #456

@gardener-robot gardener-robot added the lifecycle/stale Nobody worked on this for 6 months (will further age) label Oct 20, 2020
@hardikdr
Copy link
Member

hardikdr commented Nov 6, 2020

This should be solved with #527 .
Please feel free to re-open if seen again.
/close

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
area/usability Usability related kind/enhancement Enhancement, improvement, extension lifecycle/stale Nobody worked on this for 6 months (will further age) priority/backlog Issues which needs implementation
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@hardikdr @timuthy @gardener-robot