sparse-intern-71089
07/07/2023, 2:05 PMbillowy-army-68599
proud-solstice-16421
07/07/2023, 3:02 PMerror: resource default/externalstore was not successfully created by the Kubernetes API server : admission webhook "<http://validate.secretstore.external-secrets.io|validate.secretstore.external-secrets.io>" denied the request: invalid AuthSecretRef.ClientID: namespace not allowed with namespaced SecretStore
I found the following error and corresponding checks in the source code: https://github.com/external-secrets/external-secrets/blob/bdf437c2e1a1a441955b1036b84eed5f63bda5d9/pkg/utils/utils.go#L209C18-L209C18
clusterScope := store.GetObjectKind().GroupVersionKind().Kind == esv1beta1.ClusterSecretStoreKind
if clusterScope && ref.Namespace == nil {
return errRequireNamespace
}
if !clusterScope && ref.Namespace != nil {
return errNamespaceNotAllowed
}
return nil
But, I might be overlooking something...billowy-army-68599
ClusterSecretStore
resource, not the SecretStore
What code do you have?billowy-engine-58246
07/09/2023, 1:47 PMproud-solstice-16421
07/12/2023, 2:33 PM