From 6cc53f46fb8ae09114422e68ce891a6779f9263c Mon Sep 17 00:00:00 2001 From: yogananth subramanian Date: Thu, 1 Aug 2024 18:14:08 +0530 Subject: [PATCH] Check cluster access Checks if the user has cluster level access, if not skip collecting cluster metadata and krkn node details. Signed-off-by: yogananth subramanian --- run_kraken.py | 14 +++++++++----- 1 file changed, 9 insertions(+), 5 deletions(-) diff --git a/run_kraken.py b/run_kraken.py index 86d990d3..8be9676f 100644 --- a/run_kraken.py +++ b/run_kraken.py @@ -136,8 +136,11 @@ def main(cfg): except: kubecli.initialize_clients(None) + cluster_access = kubecli.check_rbac_access('pods','get') + # find node kraken might be running on - kubecli.find_kraken_node() + if cluster_access: + kubecli.find_kraken_node() # Set up kraken url to track signal if not 0 <= int(port) <= 65535: @@ -388,10 +391,11 @@ def main(cfg): # if platform is openshift will be collected # Cloud platform and network plugins metadata # through OCP specific APIs - if distribution == "openshift": - telemetry_ocp.collect_cluster_metadata(chaos_telemetry) - else: - telemetry_k8s.collect_cluster_metadata(chaos_telemetry) + if cluster_access: + if distribution == "openshift": + telemetry_ocp.collect_cluster_metadata(chaos_telemetry) + else: + telemetry_k8s.collect_cluster_metadata(chaos_telemetry) decoded_chaos_run_telemetry = ChaosRunTelemetry(json.loads(chaos_telemetry.to_json())) chaos_output.telemetry = decoded_chaos_run_telemetry