Bug 2074756
| Summary: | Namespace column provide wrong data in ClusterRole Details -> Rolebindings tab | ||||||
|---|---|---|---|---|---|---|---|
| Product: | OpenShift Container Platform | Reporter: | Xiyun Zhao <xiyuzhao> | ||||
| Component: | Management Console | Assignee: | Robb Hamilton <rhamilto> | ||||
| Status: | CLOSED ERRATA | QA Contact: | Xiyun Zhao <xiyuzhao> | ||||
| Severity: | medium | Docs Contact: | |||||
| Priority: | unspecified | ||||||
| Version: | 4.11 | CC: | aballant, aos-bugs, rhamilto | ||||
| Target Milestone: | --- | ||||||
| Target Release: | 4.11.0 | ||||||
| Hardware: | Unspecified | ||||||
| OS: | Unspecified | ||||||
| Whiteboard: | |||||||
| Fixed In Version: | Doc Type: | If docs needed, set a value | |||||
| Doc Text: | Story Points: | --- | |||||
| Clone Of: | Environment: | ||||||
| Last Closed: | 2022-08-10 11:07:02 UTC | Type: | Bug | ||||
| Regression: | --- | Mount Type: | --- | ||||
| Documentation: | --- | CRM: | |||||
| Verified Versions: | Category: | --- | |||||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
| Cloudforms Team: | --- | Target Upstream Version: | |||||
| Embargoed: | |||||||
| Bug Depends On: | |||||||
| Bug Blocks: | 2076369 | ||||||
| Attachments: |
|
||||||
Hi there Xiyun Zhao, I'm testing out this issue to see if I can reproduce it and I'm having some troubles understanding the flow / issue here. Your screenshot shows RoleBindings, all of which are ClusterRoleBindings. But the issue you're describing looks to be with `system:image-builder` Role? Which on my cluster shows up as a ClusterRole. Going to the `system:image-builder` ClusterRole page and the RoleBindings Tab, I see a list of one ClusterRoleBinding called `system:image-builder` and a dozen or two of `system:image-builders` that are RoleBindings... all of which are in the `All Namespaces` namespace. This is looking correct to me. Could you provide me with more steps how to setup this scenario in which you're not accurately seeing the expected Namespaces value on the ClusterRole page? Also could you provide more screenshots of what you're seeing so I can see about trying to reproduce it on my cluster? Thanks in advance, Andrew Hi Andrew, A new file:Role_Bindings_Namespaces_Column is uploaded As you can see, duplicate data list in table in Roles -> ClusterRole details page -> RoleBindings Tab. And for the first sharing pic, the project has update to 'openshift-nutanix-Infra', but still the information that provided on Namespaces Column is 'All namespaces' which may cause some misunderstanding This bug has been verified on payload 4.11.0-0.nightly-2022-04-21-025500 Verification Step: 1. Login OCP, navigate to User Management -> Roles page 2. Search and go to "system:image-builder" details page, then RoleBindings Tab 3. Verify that the listed RoleBindings have a specific Namespace on the Namespace column Result: 3. The listed RoleBindings have a specific Namespace on the Namespace column on ClusterRole details -> RoleBindings Tab Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (Important: OpenShift Container Platform 4.11.0 bug fix and security update), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHSA-2022:5069 |
Created attachment 1872053 [details] Namespace_column Description of problem: All data list in the namespace column is shown as'All namespaces' in User Management -> Roles -> ClusterRole details -> RoleBindings Tab Version-Release number of selected component (if applicable): 4.11.0-0.nightly-2022-04-11-200046 How reproducible: Always Steps to Reproduce: 1. Login OCP as administrator, navigate to UserManagement -> Roles page 2. Select system:image-builder for example, navigate to ClusterRole details -> Rolebindings Tab 3. Check the data that provide on Namespace column Actual results: 3. 'All namespaces' is the only data that provide on namespaces' column. If select one, and click into the Rolebindings details page, the data is point to an exactly Namespaces Expected results: 3. The data on ‘Namespace’ column should as same as it shown in RoleBinding details page Additional info: