create_security_context_constraint doesn't work #367

cben · 2018-11-23T11:15:59Z

This results from same mess as #307 but distinct problem. We had a workaround for this for create_endpoint but create_security_context_constraint is broken. It's an openshift resource, available both in 'v1' core api and a separate api group, neither works:

testing_scc = Kubeclient::Resource.new(
  metadata: {
    name: 'teleportation'
  },
  runAsUser: {
    type: 'MustRunAs'
  },
  seLinuxContext: {
    type: 'MustRunAs'
  }
)      

client = Kubeclient::Client.new(context.api_endpoint, context.api_version, ssl_options: context.ssl_options, auth_options: context.auth_options)

pry(main)> client = Kubeclient::Client.new(context.api_endpoint, 'v1', ssl_options: context.ssl_options, auth_options: context.auth_options)
pry(main)> client.create_security_context_constraint(testing_scc)
Kubeclient::HttpError: SecurityContextConstraint in version "v1" cannot be handled as a SecurityContextConstraints: no kind "SecurityContextConstraint" is registered for version "v1"
from /home/bpaskinc/kubeclient/lib/kubeclient/common.rb:125:in `rescue in handle_exception'
Caused by RestClient::BadRequest: 400 Bad Request
from /home/bpaskinc/myenv/rbenv/versions/2.4.4/lib/ruby/gems/2.4.0/gems/rest-client-2.0.2/lib/restclient/abstract_response.rb:223:in `exception_with_response'

pry(main)> sclient = Kubeclient::Client.new(context.api_endpoint + '/apis/security.openshift.io', 'v1', ssl_options: context.ssl_options, auth_options: context.auth_options)
pry(main)> sclient.create_security_context_constraint(testing_scc)
Kubeclient::HttpError: SecurityContextConstraint in version "v1" cannot be handled as a SecurityContextConstraints: no kind "SecurityContextConstraint" is registered for version "security.openshift.io/v1"
from /home/bpaskinc/kubeclient/lib/kubeclient/common.rb:125:in `rescue in handle_exception'
Caused by RestClient::BadRequest: 400 Bad Request
from /home/bpaskinc/myenv/rbenv/versions/2.4.4/lib/ruby/gems/2.4.0/gems/rest-client-2.0.2/lib/restclient/abstract_response.rb:223:in `exception_with_response'

Fixing this (with tests) in #366.

The text was updated successfully, but these errors were encountered:

cben · 2018-11-23T12:22:10Z

ref: #261 is where SecurityContextConstraints was previously partially fixed.

ManageIQ#367 Also fixes ManageIQ#307 - get_security_context_constraints.kind, get_endpoints.kind are now plural as in kubernetes. Also fixes ManageIQ#367 - create_security_context_constraint now works.

cben added the bug label Nov 23, 2018

cben self-assigned this Nov 23, 2018

cben mentioned this issue Nov 23, 2018

Simpler derivation of singular & plural method names #366

Merged

1 task

cben added a commit to cben/kubeclient that referenced this issue Nov 23, 2018

CHANGELOG for ManageIQ#366 fixing ManageIQ#307, ManageIQ#367

1e2319b

cben added a commit to cben/kubeclient that referenced this issue Nov 26, 2018

CHANGELOG for ManageIQ#366 fixing ManageIQ#307, ManageIQ#367

8c481f2

cben closed this as completed in #366 Nov 26, 2018

cben mentioned this issue Nov 28, 2018

Release 4.1.0 #370

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

create_security_context_constraint doesn't work #367

create_security_context_constraint doesn't work #367

cben commented Nov 23, 2018

cben commented Nov 23, 2018 •

edited

Loading

create_security_context_constraint doesn't work #367

create_security_context_constraint doesn't work #367

Comments

cben commented Nov 23, 2018

cben commented Nov 23, 2018 • edited Loading

cben commented Nov 23, 2018 •

edited

Loading