You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Currently, the controller in NATS-manager is given all-access to cluster resources. Restrict these permission, and only give RBAC for the resources as required by the controller.
Resources managed by NATS-manager:
K8s Service
StatefulSet
ConfigMap
Secret
DestinationRule
Assumption: Istio will always be enabled on Kyma.
Question: Should we give permissions specific to a certain name?
Ans: Give it access per name.
The text was updated successfully, but these errors were encountered:
Currently, the controller in NATS-manager is given all-access to cluster resources. Restrict these permission, and only give RBAC for the resources as required by the controller.
Resources managed by NATS-manager:
Assumption: Istio will always be enabled on Kyma.
Question: Should we give permissions specific to a certain name?
Ans: Give it access per name.
The text was updated successfully, but these errors were encountered: