Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

RBAC permissions constraint #335

Closed
sbocinec opened this issue May 3, 2023 · 2 comments
Closed

RBAC permissions constraint #335

sbocinec opened this issue May 3, 2023 · 2 comments
Labels
stale

Comments

@sbocinec
Copy link
Contributor

sbocinec commented May 3, 2023
edited
Loading

Hello local-path-provisioner community!

Security scanners in our org complain about excessive RBAC permissions granted to local-path-provisioner through the local-path-provisioner-role ClusterRole, specifically * granted for ["endpoints", "persistentvolumes", "pods"].

I wonder, does the provisioner indeed requires these excessive permissions? I'm currently checking the code to understand if we can constraint it in our deployment, though if anyone did something similar, I would appreciate if you can share your experience.

Thanks!
@sbocinec sbocinec mentioned this issue May 4, 2023
Merged
@github-actions GitHub Actions
Copy link

github-actions bot commented Jun 9, 2024

This issue is stale because it has been open 30 days with no activity. Remove stale label or comment or this will be closed in 5 days.

@github-actions github-actions bot added the stale label Jun 9, 2024
@sbocinec
Copy link
Contributor Author

I'm closing the issue as the PR #336 constraining the permissions has been already merge a year ago

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
stale
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@sbocinec