Rancher v.1.6.x - how to find object by it's id?

wocek · August 12, 2020, 10:31am

Hello, I’m trying to provide users with list namespace permissions. I’ve created the project_template as such:

`resource "rancher2_role_template" "project-developer-read-only" {
  context = "project"
  name = "Project Developer (read-only)"

  rules {
    api_groups = [""]
    resources = [
      "namespaces",
    ]
    verbs = [
      "get",
      "list",
      "watch"
    ]
  }

  role_template_ids = [
    "view"
  ]
}`

Yet there might be some kind of orphaned resource because when user tries to list namespace via
kubectl get ns
They are getting following error:
Error from server (Forbidden): namespaces is forbidden: User "u-vmt27up3ma" cannot list resource "namespaces" in API group "" at the cluster scope: RBAC: clusterrole.rbac.authorization.k8s.io "p-52rgj-namespaces-readonly" not found

My question is, what kind or resource is this (prefixed with p-) and how can I find it in API and delete or detach it from users?

Topic		Replies	Views
Get all namespaces from rancher-cli Rancher	2	1653	March 16, 2022
Permission issue in rancher UI Rancher 1.x	0	910	March 15, 2018
Authorisation on namespaced resource Rancher	7	827	April 7, 2022
Unable to list the namespace Rancher 1.x	0	690	March 27, 2018
Group permissions on cluster level with active directory Rancher	3	2318	July 3, 2018

Rancher v.1.6.x - how to find object by it's id?

Related Topics