You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
With the recent bug fixes by @russojrv allowing the customPermissions to correctly pass from a request through iam-utils to the createToken request, services which use this functionality will now need the iam.token.update permission in order to successfully supplement default permissions with those specifically needed for a token.
Ex: When creating a flow, the Orchestrator needs to add the readRaw permission for secrets so that the flow can properly call external credentials-secured services.
Therefore, the documentation for creating the orchestrator service account should be updated to provide it the iam.token.update permission.
The text was updated successfully, but these errors were encountered:
With the recent bug fixes by @russojrv allowing the
customPermissions
to correctly pass from a request through iam-utils to thecreateToken
request, services which use this functionality will now need theiam.token.update
permission in order to successfully supplement default permissions with those specifically needed for a token.Ex: When creating a flow, the Orchestrator needs to add the
readRaw
permission for secrets so that the flow can properly call external credentials-secured services.Therefore, the documentation for creating the orchestrator service account should be updated to provide it the
iam.token.update
permission.The text was updated successfully, but these errors were encountered: