How can I define that only configmap and secret are forbidden to be obtained?

lizhifengones · November 8, 2021, 7:20am

Asking for help? Comment out what you need so we can get more information to help you!

now:

rules:
- apiGroups:
  - '*'
  resources:
  - '*'
  verbs:
  - get
  - list

I expect to use

- "!secrets"
- "!configmaps"

, but it doesn’t seem to take effect

Kubernetes version: 1.16
Cloud being used: (put bare-metal if not on a public cloud)
Installation method:
Host OS:
CNI and version:
CRI and version:

You can format your yaml by highlighting it and pressing Ctrl-Shift-C, it will make your output easier to read.

Topic		Replies	Views
Does anyone know this issue GKE forbidden io.k8s.core.v1.configmaps.list operation? General Discussions	0	388	February 16, 2022
Can we reuse secret and configmap from other namespaces without copying it General Discussions	2	543	August 19, 2022
Update configmap from pod General Discussions	4	3898	June 11, 2021
What is the priority of role and clusterrole? General Discussions	0	331	November 11, 2021
RBAC Issue, General Discussions development	0	504	December 11, 2020