Broder Peters
09/07/2023, 11:54 AMrules:
- apiGroups:
- ""
- <http://flyte.lyft.com|flyte.lyft.com>
- <http://rbac.authorization.k8s.io|rbac.authorization.k8s.io>
resources:
- configmaps
- flyteworkflows
- namespaces
- pods
- resourcequotas
- roles
- rolebindings
- secrets
- services
- serviceaccounts
- spark-role
verbs:
- '*'
I get that I can overwrite those and restrict it more, but when does need the flyteadmin need more of those permissions besides the flyteworkflows
one?Yee
subject: |
Flyte: {{{{ "{{{{" }}}} project {{{{ "}}}}" }}}}/{{{{ "{{{{" }}}} domain {{{{ "}}}}" }}}}/{{{{ "{{{{" }}}} launch_plan.name {{{{ "}}}}" }}}}: {{{{ "{{{{" }}}} phase {{{{ "}}}}" }}}}
sender: "flyte@{parent.domain}"
body: |
Execution {{{{ "{{{{" }}}} workflow.project {{{{ "}}}}" }}}}/{{{{ "{{{{" }}}} workflow.domain {{{{ "}}}}" }}}}/{{{{ "{{{{" }}}} workflow.name {{{{ "}}}}" }}}}/{{{{ "{{{{" }}}} name {{{{ "}}}}" }}}} in phase {{{{ "{{{{" }}}} phase {{{{ "}}}}" }}}}.
Details: <https://mydomain.com/console/projects/{{{{> "{{{{" }}}} project {{{{ "}}}}" }}}}/domains/{{{{ "{{{{" }}}} domain {{{{ "}}}}" }}}}/executions/{{{{ "{{{{" }}}} name {{{{ "}}}}" }}}}.
{{{{ "{{{{" }}}} error {{{{ "}}}}" }}}}
Broder Peters
09/08/2023, 1:09 PM