Add RBAC pre-flight check to E2E pipeline #123

Closed
privilegedescalation-engineer[bot] wants to merge 6 commits from fix/pri-264-rbac-preflight-check into main
Showing only changes of commit 46350c5d57 - Show all commits
+25
View File
@@ -45,6 +45,31 @@ jobs:
- name: Setup kubectl
uses: azure/setup-kubectl@v4
- name: RBAC pre-flight check
run: |
echo "Checking RBAC resources in polaris namespace..."
MISSING_ROLE=false
MISSING_ROLEBINDING=false
if ! kubectl get role polaris-dashboard-proxy-reader -n polaris --quiet 2>/dev/null; then
echo "::error::Role polaris-dashboard-proxy-reader not found in polaris namespace."
MISSING_ROLE=true
fi
if ! kubectl get rolebinding polaris-dashboard-proxy-reader -n polaris --quiet 2>/dev/null; then
echo "::error::RoleBinding polaris-dashboard-proxy-reader not found in polaris namespace."
MISSING_ROLEBINDING=true
fi
if [ "$MISSING_ROLE" = true ] || [ "$MISSING_ROLEBINDING" = true ]; then
echo ""
echo "::error::RBAC not applied. Apply the RBAC manifests before running E2E tests:"
echo "::error:: kubectl apply -f deployment/polaris-rbac.yaml"
exit 1
fi
echo "RBAC pre-flight check passed."
- name: Install dependencies
run: npm ci