msb-public
/
helm
mirror of https://github.com/helm/helm
1
0
Code Issues Projects Releases Wiki Activity

fix: use namespace-scoped watching to avoid cluster-wide LIST permissions

Browse Source 
Signed-off-by: Mohsen Mottaghi <mohsenmottaghi@outlook.com>
pull/31610/head
Mohsen Mottaghi 3 weeks ago
parent 019e7e7145
commit 3dd54ed0b6
No known key found for this signature in database
GPG Key ID: 7B25BB5A421C2045
1 changed files with 6 additions and 2 deletions
Show Stats Download Patch File Download Diff File

8
pkg/kube/statuswait.go
Unescape View File

@ -132,7 +132,9 @@ func (w *statusWaiter) waitForDelete(ctx context.Context, resourceList ResourceL
}
resources = append(resources, obj)
}
eventCh := sw.Watch(cancelCtx, resources, watcher.Options{})
eventCh := sw.Watch(cancelCtx, resources, watcher.Options{
RESTScopeStrategy: watcher.RESTScopeNamespace,
})
statusCollector := collector.NewResourceStatusCollector(resources)
done := statusCollector.ListenWithObserver(eventCh, statusObserver(cancel, status.NotFoundStatus))
<-done
@ -175,7 +177,9 @@ func (w *statusWaiter) wait(ctx context.Context, resourceList ResourceList, sw w
resources = append(resources, obj)
}
eventCh := sw.Watch(cancelCtx, resources, watcher.Options{})
eventCh := sw.Watch(cancelCtx, resources, watcher.Options{
RESTScopeStrategy: watcher.RESTScopeNamespace,
})
statusCollector := collector.NewResourceStatusCollector(resources)
done := statusCollector.ListenWithObserver(eventCh, statusObserver(cancel, status.CurrentStatus))
<-done

Write Preview
Loading…
Cancel
Save