Skip to content

Move leases RBAC to *-metadata-reader role when HA is enabled#1106

Open
Eykha wants to merge 1 commit intostakater:masterfrom
Eykha:master
Open

Move leases RBAC to *-metadata-reader role when HA is enabled#1106
Eykha wants to merge 1 commit intostakater:masterfrom
Eykha:master

Conversation

@Eykha
Copy link
Copy Markdown

@Eykha Eykha commented Mar 5, 2026

Fixes #950.

Logs from the standby pod:

[...]
I0305 18:22:06.110079       1 leaderelection.go:258] "Attempting to acquire leader lease..." lock="default/stakater-reloader-lock"
time="2026-03-05T18:22:06Z" level=info msg="Meta info configmap already exists, updating it"
E0305 18:22:06.126553       1 leaderelection.go:456] "Error initially creating lease lock" err="leases.coordination.k8s.io \"stakater-reloader-lock\" already exists" lock="default/stakater-reloader-lock"
time="2026-03-05T18:22:09Z" level=info msg="new leader is reloader-reloader-7856b75b8-f9npn"
[Killed leader here]
I0305 18:27:43.437656       1 leaderelection.go:272] "Successfully acquired lease" lock="default/stakater-reloader-lock"
time="2026-03-05T18:27:43Z" level=info msg="became leader, starting controllers"
time="2026-03-05T18:27:43Z" level=info msg="still the leader!"
[...]

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

[BUG] ClusterRole allows clusterwide access to leases

1 participant

@Eykha