Created attachment 1714877 [details] rbac error Description of problem: Login with normal user 'test' and create a project 'test' for it. Navigate to Storage -> PVC -> 'With data upload form', bellow errors shows. 'persistentvolumeclaims is forbidden: User "test" cannot list resource "persistentvolumeclaims" in API group "" in the namespace "openshift-kubevirt-base-images"' Version-Release number of selected component (if applicable): v4.6.0-202009031349.p0-dirty How reproducible: 100% Steps to Reproduce: 1. Login with normal user 'test' and create a project 'test' for it. 2. Navigate to Storage -> PVC -> 'With data upload form', bellow errors shows. 3. Actual results: Expected results: Such error should not show as user is on 'test' ns, not on 'openshift-kubevirt-base-images'. Additional info:
this error occurs because the form tries to fetch the golden image PVCs which are in 'openshift-kubevirt-base-images' We can either disable the golden checkbox for such users, or keep the error as is. wdyt?
(In reply to Gilad Lekner from comment #2) > this error occurs because the form tries to fetch the golden image PVCs > which are in 'openshift-kubevirt-base-images' > We can either disable the golden checkbox for such users, or keep the error > as is. > > wdyt? Sorry for the late response, I prefer to disable the golden checkbox and make the error disappearing.
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (Moderate: OpenShift Container Platform 4.7.0 security, bug fix, and enhancement update), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHSA-2020:5633