Add audit cluster role to ace-user-roles v2026.6.12 by tamalsaha · Pull Request #487 · kubeops/installer

tamalsaha · 2026-06-04T07:27:50Z

Summary

Add enableClusterRoles.audit flag to ace-user-roles chart and a new appscode:audit-token-requester ClusterRole granting create on identity.k8s.appscode.com/audittokenrequests — required by the in-cluster fallback in go.bytebuilders.dev/audit#69
Bump ace-user-roles, kube-ui-server, and panopticon chart versions/deps to v2026.6.12
Enable enableClusterRoles.audit in panopticon (mirroring license-proxyserver)

Test plan

helm lint charts/ace-user-roles --set enableClusterRoles.audit=true
helm template charts/ace-user-roles --set enableClusterRoles.audit=true renders the new ClusterRole
CI green

Adds enableClusterRoles.audit flag and an appscode:audit-token-requester ClusterRole that grants create on identity.k8s.appscode.com/audittokenrequests, required for the in-cluster fallback when publishing audit events to NATS. Bumps ace-user-roles, kube-ui-server, and panopticon chart deps to v2026.6.12 and enables enableClusterRoles.audit in panopticon (mirroring license-proxyserver). Signed-off-by: Tamal Saha <tamal@appscode.com>

Adds the missing Audit field to UserClusterRoles so the generated values.openapiv3_schema.yaml for kube-ui-server and panopticon includes the new audit cluster role flag, and refreshes Chart.lock for the ace-user-roles v2026.6.12 bump. Signed-off-by: Tamal Saha <tamal@appscode.com>

kodiakhq Bot previously approved these changes Jun 4, 2026

View reviewed changes

tamalsaha dismissed kodiakhq[bot]’s stale review via 6d51129 June 4, 2026 07:39

kodiakhq Bot previously approved these changes Jun 4, 2026

View reviewed changes

tamalsaha dismissed kodiakhq[bot]’s stale review via 0efda4a June 4, 2026 07:43

tamalsaha force-pushed the feat/audit-cluster-role branch from 6d51129 to 0efda4a Compare June 4, 2026 07:43

kodiakhq Bot approved these changes Jun 4, 2026

View reviewed changes

tamalsaha merged commit f8eed8b into master Jun 4, 2026
4 checks passed

tamalsaha deleted the feat/audit-cluster-role branch June 4, 2026 07:44

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add audit cluster role to ace-user-roles v2026.6.12#487

Add audit cluster role to ace-user-roles v2026.6.12#487
tamalsaha merged 2 commits into
masterfrom
feat/audit-cluster-role

tamalsaha commented Jun 4, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Milestone

Development

Uh oh!

1 participant

Conversation

tamalsaha commented Jun 4, 2026

Summary

Test plan

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Milestone

Development

Uh oh!

1 participant