Add user-group permission to robot user #436

steled · 2024-05-08T12:42:33Z

Describe the bug
I want to add user-group permissions to one of my robot account.

But when I use the resource shown below I get the following error:

harbor_robot_account.terraform: Creating...
╷
│ Error: [ERROR] unexpected status code got: 400 expected: 201
│  {"errors":[{"code":"BAD_REQUEST","message":"bad request permission: user-group:delete"}]}
│
│
│   with harbor_robot_account.terraform,
│   on serviceaccount.tf line 6, in resource "harbor_robot_account" "terraform":
│    6: resource "harbor_robot_account" "terraform" {

But there is an delete action for the user-group resource as you can see here.

To Reproduce

create a harbor_robot_account resource as described below:

resource "harbor_robot_account" "terraform" {
  name        = "terraform"
  description = "system level robot account"
  level       = "system"
  secret      = "test"
  permissions {
    access {
      action   = "create"
      resource = "project"
    }
    access {
      action   = "list"
      resource = "project"
    }
    access {
      action   = "create"
      resource = "user-group"
    }
    access {
      action   = "delete"
      resource = "user-group"
    }
    access {
      action   = "read"
      resource = "user-group"
    }
    access {
      action   = "update"
      resource = "user-group"
    }
    kind      = "system"
    namespace = "/"
  }
  permissions {
    access {
      action   = "delete"
      resource = "project"
    }
    access {
      action   = "read"
      resource = "project"
    }
    access {
      action   = "update"
      resource = "project"
    }
    kind      = "project"
    namespace = "*"
  }
}

Expected behavior
A robot user that gets grants for user-group

Additional context

Provider Version: v3.10.9
Terraform Version: v1.8.0
Harbor Version: v2.10.1-b7b88476

The text was updated successfully, but these errors were encountered:

flbla · 2024-05-13T14:31:21Z

with the 2.10 version harbor API support less robot rights
can you add your use case here : goharbor/harbor#20076 ?

I will update the doc of the provider

steled · 2024-05-14T09:00:09Z

can you add your use case here : goharbor/harbor#20076 ?

done

flbla added the question Further information is requested label May 13, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add user-group permission to robot user #436

Add user-group permission to robot user #436

steled commented May 8, 2024

flbla commented May 13, 2024

steled commented May 14, 2024

Add user-group permission to robot user #436

Add user-group permission to robot user #436

Comments

steled commented May 8, 2024

flbla commented May 13, 2024

steled commented May 14, 2024