- nebula operator 版本:1.2.0
role.yaml
apiVersion: rbac.authorization.k8s.io/v1
kind: Role
metadata:
creationTimestamp: null
name: {{ template "controller-manager.name" . }}-role
labels:
{{- include "controller-manager.labels" . | nindent 4 }}
rules:
- apiGroups:
- "*"
resources:
- "*"
verbs:
- "*"
- apiGroups:
- "apps.nebula-graph.io"
resources:
- "*"
verbs:
- "*"
如果有日志或者代码,记得用 Markdown 语法(下面语法)包裹它们提高阅读体验,让回复者更快解决问题哟~~
E0823 04:34:40.693494 1 reflector.go:127] k8s.io/client-go@v0.19.2/tools/cache/reflector.go:156: Failed to watch *v1alpha1.NebulaCluster: failed to list *v1alpha1.NebulaCluster: nebulaclusters.apps.nebula-graph.io is forbidden: User "system:serviceaccount:test:luktest-nebula-operator-controller-manager-sa" cannot list resource "nebulaclusters" in API group "apps.nebula-graph.io" at the cluster scope
最后烦请删掉本模版和问题无关的信息之后,再提交提问,Thx