Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.

Bug 1785448

Summary: cluster-reader is unable to view machine resources
Product: OpenShift Container Platform Reporter: Eric Paris <eparis>
Component: apiserver-authAssignee: Stefan Schimanski <sttts>
Status: CLOSED DUPLICATE QA Contact: scheng
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 4.2.zCC: aos-bugs, mfojtik, scuppett, wsun
Target Milestone: ---   
Target Release: 4.4.0   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2020-01-30 11:39:28 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Eric Paris 2019-12-19 21:50:52 UTC 
4.2.0-0.nightly-2019-10-11-230724

after running:
$ KUBECONFIG=~/.kube/build01 oc adm policy add-cluster-role-to-user cluster-reader eparis --as system:admin

I get:

 machineautoscalers.autoscaling.openshift.io is forbidden: User "eparis" cannot list resource "machineautoscalers" in API group "autoscaling.openshift.io" in the namespace "openshift-machine-api"


also

 operatorhubs.config.openshift.io is forbidden: User "eparis" cannot list resource "operatorhubs" in API group "config.openshift.io" at the cluster scope


What team should fix these?
Comment 1 Stephen Cuppett 2019-12-20 15:44:06 UTC 
Setting target to the active development branch (4.4). Clones of this BZ will be created for fixes, if any, which are required to be backported to earlier release maintenance streams.