Nolan Nichols
05/11/2022, 10:19 PMdagster
and user-code
deployments. For the user-code
deployment I configured a custom serviceAccountName
while the dagster
deployment uses the default role for the cluster.
When I run a job using the K8sRunLauncher
it is running under the default role rather than the custom one specified in my user-code
deployment. I confirmed that pod running my user-code
correctly assumes the role specified with serviceAccountName
and assumed that jobs would inherit this role as well.
Is this the expected behavior or how can I configure my job to run using a specified service account?daniel
05/11/2022, 10:21 PMNolan Nichols
05/11/2022, 10:22 PMdaniel
05/11/2022, 10:23 PMJuan Arrivillaga
05/11/2022, 11:00 PMglobal:
serviceAccountName: "our-service-account"
daniel
05/12/2022, 12:41 AMdaniel
05/12/2022, 12:42 AMJuan Arrivillaga
05/12/2022, 2:58 AMdaniel
05/12/2022, 2:59 AMdaniel
05/12/2022, 3:00 AMNolan Nichols
05/20/2022, 4:15 PMdagster-k8s/config: {"pod_spec_config": {"service_account_name": "dagster-access-control-sa"}}