Describe the bug
When enabling the source-watcher extra component, generated manifests for the flux-edit and flux-view ClusterRoles do not include the source.extensions.fluxcd.io group.
As a result, users or service accounts bound to view or edit ClusterRoles do not have access to the ArtifactGenerator custom resource when source-watcher is enabled.
Steps to reproduce
flux install --components-extra source-watcher --export
Expected behavior
The view and edit ClusterRoles should allow access to ArtifactGenerator in the source.extensions.fluxcd.io group.
Screenshots and recordings
No response
OS / Distro
macOS 26
Flux version
v2.7.3
Flux check
N/A
Git provider
No response
Container Registry provider
No response
Additional context
No response
Code of Conduct
Describe the bug
When enabling the
source-watcherextra component, generated manifests for theflux-editandflux-viewClusterRoles do not include thesource.extensions.fluxcd.iogroup.As a result, users or service accounts bound to
vieworeditClusterRoles do not have access to theArtifactGeneratorcustom resource whensource-watcheris enabled.Steps to reproduce
flux install --components-extra source-watcher --exportExpected behavior
The
viewandeditClusterRoles should allow access toArtifactGeneratorin thesource.extensions.fluxcd.iogroup.Screenshots and recordings
No response
OS / Distro
macOS 26
Flux version
v2.7.3
Flux check
N/A
Git provider
No response
Container Registry provider
No response
Additional context
No response
Code of Conduct