Access to ServiceAccount token should be restricted

**What happened?**

Pods which are not contacting kubernetes API have SA token mounted which is a security threat. We should consider implementing [mechanisms from kube-prometheus project](https://github.com/prometheus-operator/kube-prometheus/issues/1589) and prevent mounting SA token in following objects:

```
    Deployment - test-grafana 
    Deployment - test-promscale 
    Pod - test-grafana-test 
    ServiceAccount - test-grafana 
    ServiceAccount - test-grafana-test 
    ServiceAccount - test-prometheus-node-exporter 
    ServiceAccount - test-promscale-initializer-sa 
```

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Access to ServiceAccount token should be restricted #461

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Access to ServiceAccount token should be restricted #461

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions