Controller deleting existing/unmanaged resource #2102
Labels
area/runtime
Issues or PRs as related to controller runtime, common reconciliation logic, etc
kind/bug
Categorizes issue or PR as related to a bug.
priority/critical-urgent
Highest priority. Must be actively worked on as someone's top priority right now.
triage/needs-information
Indicates an issue needs more information in order to work on it.
Describe the bug
I recently used the IAM controller to create an IAM role. I found that if a role exists already (created outside of ACK) with the same name as the new role, not only does ACK throw an error initially (this is expected, obviously), but if I then modfiy the name of the new ACK managed role, the controller will proceed to delete the existing role (i.e., the role created outside of ACK).
Steps to reproduce
Expected outcome
I would not expect ACK to be able to do this. The original role was not created by ACK. No config was put in place for it to adopt the existing role. I don't believe it should be able to take control of such a resource and delete it. This is dangerous behaviour.
Environment
The text was updated successfully, but these errors were encountered: