deck sync --rbac-resources-only doesn't add back actions for the role permissions

[pmutyala]

deck version
decK v1.11.0 (4235c73)

1. Take a backup of rbac resources
   2022-03-18 15:10:20 [8] [INFO] helpers.commands cmd from generate_deck_dump_rbac_cmd is deck dump --rbac-resources-only --all-workspaces --headers "kong-admin-token: xxxxxx" --kong-addr http://kube-kong-admin.service.intraiad1.devconsul.csnzoo.com --format yaml --tls-skip-verify

cat demospace.yaml
_format_version: "1.1"
_workspace: demospace
rbac_roles:

• endpoint_permissions:
  • actions:
    • read
      endpoint: '*'
      negative: false
      workspace: demospace
      name: demospace-workspace-readonly

2. delete the role

3. Restore the role through deck sync

deck sync --workspace demospace --rbac-resources-only --kong-addr http://kube-kong-admin.service.intraiad1.devconsul.service.com --headers 'kong-admin-token:{{token}}' --tls-skip-verify -s /wayfair/data/codebase/backups/20220318141020/rbac/demospace.yaml
creating rbac-role demospace-workspace-readonly
creating rbac-endpoint-permission eff2e4aa-0fb6-4df0-938a-4a2c12aaa44d-demospace-*
Summary:
Created: 2
Updated: 0
Deleted: 0

4. Check role and permissions

5. actions is an empty array it doesn't configure anything..

If we need to edit and add back action, Kong doesn't allow and have to delete the whole permission and add it back with required actions.

[GGabriele]

Hi @pmutyala , thanks for opening this issue.

I already opened a couple of PRs for this, so hopefully we should solve this soon!

#619

[GGabriele]

Fixed this here. It will be included in the next release!