Page MenuHomePhabricator
Create Task
Maniphest T200348

Get helm test to dump more information
Closed, InvalidPublic
Actions

Description

Since helm test is deploying the service-checker container and running it against the deployed mathoid container I should be able to do the same process using k8s manually. This may help to explain the problem with helm test failing in the CI namespace without additional permissions.

Related Objects
Search...

Event Timeline

thcipriani claimed this task.Jul 25 2018, 3:32 PM
thcipriani triaged this task as Medium priority.
thcipriani created this task.
akosiaris added a comment.Jul 26 2018, 2:23 PM

FWIW and strictly speaking, helm is NOT deploying the service-checker pod. That would be tiller, the in cluster server part of helm. And tiller has more rights than the deploy user on purpose (and we want to keep it that way). The rights themselves can be viewed at https://gerrit.wikimedia.org/r/plugins/gitiles/operations/deployment-charts/+/refs/heads/master/rbac/.

dduvall moved this task from Backlog to CI on the Release Pipeline board.Jul 30 2018, 7:04 PM
thcipriani closed this task as Invalid.Aug 3 2018, 3:56 PM

This task is now unnecessary since @akosiaris updated the RBAC was updated in T199489 (\o/)

Content licensed under Creative Commons Attribution-ShareAlike 3.0 (CC-BY-SA) unless otherwise noted; code licensed under GNU General Public License (GPL) or other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL