nginxinc/nginx-ingress-helm-operator

Missing authorisation for k8s objects replicasets and nodes

Closed this issue · 0 comments

vepatel commented

Describe the bug
Unable to fetch replicasets and nodes for telemetry:

E0610 09:30:26.717552       1 collector.go:159] Error collecting telemetry data: Nodes: nodes is forbidden: User "system:serviceaccount:default:nginx-ingress" cannot list resource "nodes" in API group "" at the cluster scope
E0610 09:30:26.727260       1 collector.go:169] Error collecting telemetry data: Platform: nodes is forbidden: User "system:serviceaccount:default:nginx-ingress" cannot list resource "nodes" in API group "" at the cluster scope
E0610 09:30:26.843576       1 collector.go:174] Error collecting telemetry data: Replicas: replicasets.apps "nginxingress-sample-nginx-ingress-controller-7c467bf67b" is forbidden: User "system:serviceaccount:default:nginx-ingress" cannot get resource "replicasets" in API group "apps" in the namespace "default"
E0610 09:30:27.040106       1 collector.go:179] Error collecting telemetry data: InstallationID: error generating InstallationID: replicasets.apps "nginxingress-sample-nginx-ingress-controller-7c467bf67b" is forbidden: User "system:serviceaccount:default:nginx-ingress" cannot get resource "replicasets" in API group "apps" in the namespace "default"
E0610 09:30:27.040125       1 collector.go:94] Error collecting telemetry data: error generating InstallationID: replicasets.apps "nginxingress-sample-nginx-ingress-controller-7c467bf67b" is forbidden: User "system:serviceaccount:default:nginx-ingress" cannot get resource "replicasets" in API group "apps" in the namespace "default"

To Reproduce

  • Deploy NIC using operator in an openshift environment,
  • Trail the pod logs

Expected behavior

  • No errors in logs

Your environment

  • Version of the NGINX Ingress Operator - 2.2.x
  • Version of the Ingress Controller - r3.5.x
  • Version of Kubernetes - 1.29
  • Kubernetes platform (e.g. Mini-kube or GCP) - openshift on AWS
  • Using NGINX or NGINX Plus - Nginx

Additional context
Add any other context about the problem here. Any log files you want to share.