Description:
Cross namespace secret reference is not allowed in OIDC security policy, even with reference grant
I checked the code and allowCrossNamespace is "false"
|
false, from, oidc.ClientSecret, resources); err != nil { |
Since it's false, reference grant is not checked
|
if !allowCrossNamespace { |
Environment:
v1.5.1
Logs:
OIDC: secret ref namespace must be unspecified/empty or .