Description of problem: when idling the service, got below error message: error: unable to mark service "hongli/service-unsecure" as idled: endpoints "service-unsecure" is forbidden: User "testuser-33" cannot patch resource "endpoints" in API group "" in the namespace "hongli"ReplicationController "hongli/web-server-rc" has been idled OpenShift release version: 4.9.0-0.nightly-2021-08-22-070405 Cluster Platform: AWS How reproducible: 100% Steps to Reproduce (in detail): 1. create a 4.9 OCP cluster 2. oc login -u testuser-33 -p password 3. create ReplicationController/web-server-rc oc create -f https://raw.githubusercontent.com/openshift/verification-tests/master/testdata/routing/web-server-rc.yaml 4. oc expose svc service-unsecure 5. oc idle service-unsecure Actual results: $ oc idle service-unsecure error: unable to mark service "hongli/service-unsecure" as idled: endpoints "service-unsecure" is forbidden: User "testuser-33" cannot patch resource "endpoints" in API group "" in the namespace "hongli"ReplicationController "hongli/web-server-rc" has been idled Expected results: no error message Impact of the problem: the ReplicationController is idled but this command return false that caused the test cases failed Additional info: ** Please do not disregard the report template; filling the template out as much as possible will allow us to help you. Please consider attaching a must-gather archive (via `oc adm must-gather`). Please review must-gather contents for sensitive information before attaching any must-gathers to a bugzilla report. You may also mark the bug private if you wish.
This report is related to bug 1996160. Depending on how we solve bug 1996160, we may solve this bug with the same solution.
*** This bug has been marked as a duplicate of bug 1995505 ***