Enhancement Description

• One-line enhancement description (can be used as a release note): EndpointSlice controller can be configured to provide topology aware hints that will enable simple topology aware routing.
• Kubernetes Enhancement Proposal: https://github.com/kubernetes/enhancements/tree/master/keps/sig-network/2433-topology-aware-hints
• Discussion Link: https://docs.google.com/document/d/1ZzUoFY1SrdjVefl7gVOJZJLt1I1LHttw8pcX95nlgMY/edit
• Primary contact (assignee): @robscott
• Responsible SIGs: sig-network
• Enhancement target (which target equals to which milestone):
  • Alpha release target (x.y): v1.21
  • Beta release target (x.y): v1.23
  • Stable release target (x.y): v1.25
• Alpha
  • KEP (k/enhancements) update PR(s):
  • Code (k/k) update PR(s):
  • Docs (k/website) update PR(s):

/sig network

What type of PR is this? /kind documentation

What this PR does / why we need it: Adds a guide for GEP-726 features, including the changes currently under review in #1124

It is a WIP for two reasons:

• For HTTP->HTTPS redirects, are implementations expected to not redirect requests that are already HTTPS, or does the spec allow misconfigurations that result in redirect loops? If so, how should users properly set up their HTTPRoutes and Gateway Listener configuration to only match these redirect rules on HTTP requests? I expect this generalizes to path/hostname/etc. also, but this was the most prominent case I could think of.
• Do we care about path types for path modifiers? It seems that you can use prefix modifiers for exact paths, though it's probably pointless (if harmless), and I'm not sure whether RegularExpression paths would be considered prefixes here (i.e. ReplacePrefixMatch changes only the path segment matching the regex).
• I added the text suggested in #928 mostly as-is, but it raises the question "what status must we set?". It seems like we need a new RouteConditionType for filter-related statuses if we want this, or a new RouteConditionReason (it doesn't seem like it'd fit under any of the existing types unless we reject routes with invalid filters entirely, and I wouldn't expect to since they're per-rule and since the text indicates this should just be a warning, not an error).

As a side note, I have bad timing and will be out from 5/18-5/28, so it may make sense to use this as a starting point for someone else if review takes time or it needs significant changes. Edit: then I forgot this is the week that a bunch of people are at Kubecon :slightly_smiling_face: I should actually be able to check things on the 26th even though I'm still technically out.

Which issue(s) this PR fixes: Fixes #1038 Fixes #928

Does this PR introduce a user-facing change?:

NONE

What type of PR is this? /kind documentation

What this PR does / why we need it: Adds a guide for GEP-726 features, including the changes currently under review in #1124

It is a WIP for two reasons:

• For HTTP->HTTPS redirects, are implementations expected to not redirect requests that are already HTTPS, or does the spec allow misconfigurations that result in redirect loops? If so, how should users properly set up their HTTPRoutes and Gateway Listener configuration to only match these redirect rules on HTTP requests? I expect this generalizes to path/hostname/etc. also, but this was the most prominent case I could think of.
• Do we care about path types for path modifiers? It seems that you can use prefix modifiers for exact paths, though it's probably pointless (if harmless), and I'm not sure whether RegularExpression paths would be considered prefixes here (i.e. ReplacePrefixMatch changes only the path segment matching the regex).
• I added the text suggested in #928 mostly as-is, but it raises the question "what status must we set?". It seems like we need a new RouteConditionType for filter-related statuses if we want this, or a new RouteConditionReason (it doesn't seem like it'd fit under any of the existing types unless we reject routes with invalid filters entirely, and I wouldn't expect to since they're per-rule and since the text indicates this should just be a warning, not an error).

As a side note, I have bad timing and will be out from 5/18-5/28, so it may make sense to use this as a starting point for someone else if review takes time or it needs significant changes. Edit: then I forgot this is the week that a bunch of people are at Kubecon :slightly_smiling_face: I should actually be able to check things on the 26th even though I'm still technically out.

Which issue(s) this PR fixes: Fixes #1038 Fixes #928

Does this PR introduce a user-facing change?:

NONE

What type of PR is this? /kind documentation

What this PR does / why we need it: Adds a guide for GEP-726 features, including the changes currently under review in #1124

It is a WIP for two reasons:

• For HTTP->HTTPS redirects, are implementations expected to not redirect requests that are already HTTPS, or does the spec allow misconfigurations that result in redirect loops? If so, how should users properly set up their HTTPRoutes and Gateway Listener configuration to only match these redirect rules on HTTP requests? I expect this generalizes to path/hostname/etc. also, but this was the most prominent case I could think of.
• Do we care about path types for path modifiers? It seems that you can use prefix modifiers for exact paths, though it's probably pointless (if harmless), and I'm not sure whether RegularExpression paths would be considered prefixes here (i.e. ReplacePrefixMatch changes only the path segment matching the regex).
• I added the text suggested in #928 mostly as-is, but it raises the question "what status must we set?". It seems like we need a new RouteConditionType for filter-related statuses if we want this, or a new RouteConditionReason (it doesn't seem like it'd fit under any of the existing types unless we reject routes with invalid filters entirely, and I wouldn't expect to since they're per-rule and since the text indicates this should just be a warning, not an error).

As a side note, I have bad timing and will be out from 5/18-5/28, so it may make sense to use this as a starting point for someone else if review takes time or it needs significant changes. Edit: then I forgot this is the week that a bunch of people are at Kubecon :slightly_smiling_face: I should actually be able to check things on the 26th even though I'm still technically out.

Which issue(s) this PR fixes: Fixes #1038 Fixes #928

Does this PR introduce a user-facing change?:

NONE

What type of PR is this? /kind documentation

What this PR does / why we need it: Adds a guide for GEP-726 features, including the changes currently under review in #1124

It is a WIP for two reasons:

• For HTTP->HTTPS redirects, are implementations expected to not redirect requests that are already HTTPS, or does the spec allow misconfigurations that result in redirect loops? If so, how should users properly set up their HTTPRoutes and Gateway Listener configuration to only match these redirect rules on HTTP requests? I expect this generalizes to path/hostname/etc. also, but this was the most prominent case I could think of.
• Do we care about path types for path modifiers? It seems that you can use prefix modifiers for exact paths, though it's probably pointless (if harmless), and I'm not sure whether RegularExpression paths would be considered prefixes here (i.e. ReplacePrefixMatch changes only the path segment matching the regex).
• I added the text suggested in #928 mostly as-is, but it raises the question "what status must we set?". It seems like we need a new RouteConditionType for filter-related statuses if we want this, or a new RouteConditionReason (it doesn't seem like it'd fit under any of the existing types unless we reject routes with invalid filters entirely, and I wouldn't expect to since they're per-rule and since the text indicates this should just be a warning, not an error).

As a side note, I have bad timing and will be out from 5/18-5/28, so it may make sense to use this as a starting point for someone else if review takes time or it needs significant changes. Edit: then I forgot this is the week that a bunch of people are at Kubecon :slightly_smiling_face: I should actually be able to check things on the 26th even though I'm still technically out.

Which issue(s) this PR fixes: Fixes #1038 Fixes #928

Does this PR introduce a user-facing change?:

NONE

What type of PR is this? /kind documentation

What this PR does / why we need it: Adds a guide for GEP-726 features, including the changes currently under review in #1124

It is a WIP for two reasons:

• For HTTP->HTTPS redirects, are implementations expected to not redirect requests that are already HTTPS, or does the spec allow misconfigurations that result in redirect loops? If so, how should users properly set up their HTTPRoutes and Gateway Listener configuration to only match these redirect rules on HTTP requests? I expect this generalizes to path/hostname/etc. also, but this was the most prominent case I could think of.
• Do we care about path types for path modifiers? It seems that you can use prefix modifiers for exact paths, though it's probably pointless (if harmless), and I'm not sure whether RegularExpression paths would be considered prefixes here (i.e. ReplacePrefixMatch changes only the path segment matching the regex).
• I added the text suggested in #928 mostly as-is, but it raises the question "what status must we set?". It seems like we need a new RouteConditionType for filter-related statuses if we want this, or a new RouteConditionReason (it doesn't seem like it'd fit under any of the existing types unless we reject routes with invalid filters entirely, and I wouldn't expect to since they're per-rule and since the text indicates this should just be a warning, not an error).

As a side note, I have bad timing and will be out from 5/18-5/28, so it may make sense to use this as a starting point for someone else if review takes time or it needs significant changes. Edit: then I forgot this is the week that a bunch of people are at Kubecon :slightly_smiling_face: I should actually be able to check things on the 26th even though I'm still technically out.

Which issue(s) this PR fixes: Fixes #1038 Fixes #928

Does this PR introduce a user-facing change?:

NONE

What type of PR is this? /kind documentation

What this PR does / why we need it: Adds a guide for GEP-726 features, including the changes currently under review in #1124

It is a WIP for two reasons:

• For HTTP->HTTPS redirects, are implementations expected to not redirect requests that are already HTTPS, or does the spec allow misconfigurations that result in redirect loops? If so, how should users properly set up their HTTPRoutes and Gateway Listener configuration to only match these redirect rules on HTTP requests? I expect this generalizes to path/hostname/etc. also, but this was the most prominent case I could think of.
• Do we care about path types for path modifiers? It seems that you can use prefix modifiers for exact paths, though it's probably pointless (if harmless), and I'm not sure whether RegularExpression paths would be considered prefixes here (i.e. ReplacePrefixMatch changes only the path segment matching the regex).
• I added the text suggested in #928 mostly as-is, but it raises the question "what status must we set?". It seems like we need a new RouteConditionType for filter-related statuses if we want this, or a new RouteConditionReason (it doesn't seem like it'd fit under any of the existing types unless we reject routes with invalid filters entirely, and I wouldn't expect to since they're per-rule and since the text indicates this should just be a warning, not an error).

As a side note, I have bad timing and will be out from 5/18-5/28, so it may make sense to use this as a starting point for someone else if review takes time or it needs significant changes. Edit: then I forgot this is the week that a bunch of people are at Kubecon :slightly_smiling_face: I should actually be able to check things on the 26th even though I'm still technically out.

Which issue(s) this PR fixes: Fixes #1038 Fixes #928

Does this PR introduce a user-facing change?:

NONE

What type of PR is this? /kind documentation

What this PR does / why we need it: Adds a guide for GEP-726 features, including the changes currently under review in #1124

It is a WIP for two reasons:

• For HTTP->HTTPS redirects, are implementations expected to not redirect requests that are already HTTPS, or does the spec allow misconfigurations that result in redirect loops? If so, how should users properly set up their HTTPRoutes and Gateway Listener configuration to only match these redirect rules on HTTP requests? I expect this generalizes to path/hostname/etc. also, but this was the most prominent case I could think of.
• Do we care about path types for path modifiers? It seems that you can use prefix modifiers for exact paths, though it's probably pointless (if harmless), and I'm not sure whether RegularExpression paths would be considered prefixes here (i.e. ReplacePrefixMatch changes only the path segment matching the regex).
• I added the text suggested in #928 mostly as-is, but it raises the question "what status must we set?". It seems like we need a new RouteConditionType for filter-related statuses if we want this, or a new RouteConditionReason (it doesn't seem like it'd fit under any of the existing types unless we reject routes with invalid filters entirely, and I wouldn't expect to since they're per-rule and since the text indicates this should just be a warning, not an error).

As a side note, I have bad timing and will be out from 5/18-5/28, so it may make sense to use this as a starting point for someone else if review takes time or it needs significant changes. Edit: then I forgot this is the week that a bunch of people are at Kubecon :slightly_smiling_face: I should actually be able to check things on the 26th even though I'm still technically out.

Which issue(s) this PR fixes: Fixes #1038 Fixes #928

Does this PR introduce a user-facing change?:

NONE

What type of PR is this? /kind documentation

What this PR does / why we need it: Adds a guide for GEP-726 features, including the changes currently under review in #1124

It is a WIP for two reasons:

• For HTTP->HTTPS redirects, are implementations expected to not redirect requests that are already HTTPS, or does the spec allow misconfigurations that result in redirect loops? If so, how should users properly set up their HTTPRoutes and Gateway Listener configuration to only match these redirect rules on HTTP requests? I expect this generalizes to path/hostname/etc. also, but this was the most prominent case I could think of.
• Do we care about path types for path modifiers? It seems that you can use prefix modifiers for exact paths, though it's probably pointless (if harmless), and I'm not sure whether RegularExpression paths would be considered prefixes here (i.e. ReplacePrefixMatch changes only the path segment matching the regex).
• I added the text suggested in #928 mostly as-is, but it raises the question "what status must we set?". It seems like we need a new RouteConditionType for filter-related statuses if we want this, or a new RouteConditionReason (it doesn't seem like it'd fit under any of the existing types unless we reject routes with invalid filters entirely, and I wouldn't expect to since they're per-rule and since the text indicates this should just be a warning, not an error).

As a side note, I have bad timing and will be out from 5/18-5/28, so it may make sense to use this as a starting point for someone else if review takes time or it needs significant changes. Edit: then I forgot this is the week that a bunch of people are at Kubecon :slightly_smiling_face: I should actually be able to check things on the 26th even though I'm still technically out.

Which issue(s) this PR fixes: Fixes #1038 Fixes #928

Does this PR introduce a user-facing change?:

NONE

What type of PR is this? /kind documentation

What this PR does / why we need it: Adds a guide for GEP-726 features, including the changes currently under review in #1124

It is a WIP for two reasons:

• For HTTP->HTTPS redirects, are implementations expected to not redirect requests that are already HTTPS, or does the spec allow misconfigurations that result in redirect loops? If so, how should users properly set up their HTTPRoutes and Gateway Listener configuration to only match these redirect rules on HTTP requests? I expect this generalizes to path/hostname/etc. also, but this was the most prominent case I could think of.
• Do we care about path types for path modifiers? It seems that you can use prefix modifiers for exact paths, though it's probably pointless (if harmless), and I'm not sure whether RegularExpression paths would be considered prefixes here (i.e. ReplacePrefixMatch changes only the path segment matching the regex).
• I added the text suggested in #928 mostly as-is, but it raises the question "what status must we set?". It seems like we need a new RouteConditionType for filter-related statuses if we want this, or a new RouteConditionReason (it doesn't seem like it'd fit under any of the existing types unless we reject routes with invalid filters entirely, and I wouldn't expect to since they're per-rule and since the text indicates this should just be a warning, not an error).

As a side note, I have bad timing and will be out from 5/18-5/28, so it may make sense to use this as a starting point for someone else if review takes time or it needs significant changes. Edit: then I forgot this is the week that a bunch of people are at Kubecon :slightly_smiling_face: I should actually be able to check things on the 26th even though I'm still technically out.

Which issue(s) this PR fixes: Fixes #1038 Fixes #928

Does this PR introduce a user-facing change?:

NONE

What type of PR is this? /kind documentation

What this PR does / why we need it: Adds a guide for GEP-726 features, including the changes currently under review in #1124

It is a WIP for two reasons:

• For HTTP->HTTPS redirects, are implementations expected to not redirect requests that are already HTTPS, or does the spec allow misconfigurations that result in redirect loops? If so, how should users properly set up their HTTPRoutes and Gateway Listener configuration to only match these redirect rules on HTTP requests? I expect this generalizes to path/hostname/etc. also, but this was the most prominent case I could think of.
• Do we care about path types for path modifiers? It seems that you can use prefix modifiers for exact paths, though it's probably pointless (if harmless), and I'm not sure whether RegularExpression paths would be considered prefixes here (i.e. ReplacePrefixMatch changes only the path segment matching the regex).
• I added the text suggested in #928 mostly as-is, but it raises the question "what status must we set?". It seems like we need a new RouteConditionType for filter-related statuses if we want this, or a new RouteConditionReason (it doesn't seem like it'd fit under any of the existing types unless we reject routes with invalid filters entirely, and I wouldn't expect to since they're per-rule and since the text indicates this should just be a warning, not an error).

As a side note, I have bad timing and will be out from 5/18-5/28, so it may make sense to use this as a starting point for someone else if review takes time or it needs significant changes. Edit: then I forgot this is the week that a bunch of people are at Kubecon :slightly_smiling_face: I should actually be able to check things on the 26th even though I'm still technically out.

Which issue(s) this PR fixes: Fixes #1038 Fixes #928

Does this PR introduce a user-facing change?:

NONE

What type of PR is this? /kind documentation

What this PR does / why we need it: Adds a guide for GEP-726 features, including the changes currently under review in #1124

It is a WIP for two reasons:

• For HTTP->HTTPS redirects, are implementations expected to not redirect requests that are already HTTPS, or does the spec allow misconfigurations that result in redirect loops? If so, how should users properly set up their HTTPRoutes and Gateway Listener configuration to only match these redirect rules on HTTP requests? I expect this generalizes to path/hostname/etc. also, but this was the most prominent case I could think of.
• Do we care about path types for path modifiers? It seems that you can use prefix modifiers for exact paths, though it's probably pointless (if harmless), and I'm not sure whether RegularExpression paths would be considered prefixes here (i.e. ReplacePrefixMatch changes only the path segment matching the regex).
• I added the text suggested in #928 mostly as-is, but it raises the question "what status must we set?". It seems like we need a new RouteConditionType for filter-related statuses if we want this, or a new RouteConditionReason (it doesn't seem like it'd fit under any of the existing types unless we reject routes with invalid filters entirely, and I wouldn't expect to since they're per-rule and since the text indicates this should just be a warning, not an error).

As a side note, I have bad timing and will be out from 5/18-5/28, so it may make sense to use this as a starting point for someone else if review takes time or it needs significant changes. Edit: then I forgot this is the week that a bunch of people are at Kubecon :slightly_smiling_face: I should actually be able to check things on the 26th even though I'm still technically out.

Which issue(s) this PR fixes: Fixes #1038 Fixes #928

Does this PR introduce a user-facing change?:

NONE

What would you like to be added: As @howardjohn noted in Slack, our hostname matching behavior is not clearly specified. Other than saying "exact matches must be processed before wildcard matches", we don't really cover how wildcard matches should be implemented. Specifically, which of the following should *.example.com match?

1. a.example.com
2. a.b.example.com

We recently added a conformance test that stated that only 1 should match. On further thought, I'm not sure that's what we want.

Here's my understanding of the default behavior for a variety of different products:

1. nginx defaults to match 1 and 2 ref
2. envoy defaults to match 1 and 2 ref
3. haproxy can definitely support suffix matching (hdr_end), I'm not sure about the other ref
4. GCP can only support suffix matching (not well documented yet)

Given the above, it seems that most underlying implementations treat wildcard host matching as suffix matching as the default, and some may only be able to support that approach. My suggestion would be to adjust the spec and conformance tests to reflect that.

Why this is needed: This is an important gap in our spec today.

/kind cleanup

Does this PR introduce a user-facing change?:

NONE

When a URLRewrite filter is specified on a Route rule and it includes ReplacePathPrefix configuration, we should verify that exactly one path prefix match is specified on the same Route rule. We should also verify that no other path matches are specified as part of this.

https://github.com/kubernetes-sigs/gateway-api/blob/c7da26bec21093f2eec792dd49386c344982ea9e/apis/v1alpha2/httproute_types.go#L719-L733

How could i rewrite url like /foo/bar prefixed with foo to /bar , it does not allow setting match value

https://github.com/kubernetes-sigs/gateway-api/blob/c7da26bec21093f2eec792dd49386c344982ea9e/apis/v1alpha2/httproute_types.go#L719-L733

How could i rewrite url like /foo/bar prefixed with foo to /bar , it does not allow setting match value

https://github.com/kubernetes-sigs/gateway-api/blob/c7da26bec21093f2eec792dd49386c344982ea9e/apis/v1alpha2/httproute_types.go#L719-L733

How could i rewrite url like /foo/bar prefixed with foo to /bar , it does not allow setting match value

What type of PR is this? /kind documentation

What this PR does / why we need it: Adds a guide for GEP-726 features, including the changes currently under review in #1124

It is a WIP for two reasons:

• For HTTP->HTTPS redirects, are implementations expected to not redirect requests that are already HTTPS, or does the spec allow misconfigurations that result in redirect loops? If so, how should users properly set up their HTTPRoutes and Gateway Listener configuration to only match these redirect rules on HTTP requests? I expect this generalizes to path/hostname/etc. also, but this was the most prominent case I could think of.
• Do we care about path types for path modifiers? It seems that you can use prefix modifiers for exact paths, though it's probably pointless (if harmless), and I'm not sure whether RegularExpression paths would be considered prefixes here (i.e. ReplacePrefixMatch changes only the path segment matching the regex).
• I added the text suggested in #928 mostly as-is, but it raises the question "what status must we set?". It seems like we need a new RouteConditionType for filter-related statuses if we want this, or a new RouteConditionReason (it doesn't seem like it'd fit under any of the existing types unless we reject routes with invalid filters entirely, and I wouldn't expect to since they're per-rule and since the text indicates this should just be a warning, not an error).

As a side note, I have bad timing and will be out from 5/18-5/28, so it may make sense to use this as a starting point for someone else if review takes time or it needs significant changes.

Which issue(s) this PR fixes: Fixes #1038 Fixes #928

Does this PR introduce a user-facing change?:

NONE

What type of PR is this? /area conformance

What this PR does / why we need it: Adds a conformance test that validates hostname intersection between HTTPRoutes and Listeners.

Also updates the "WaitsForConsistency" helper to retry immediately after a successful request, to speed up test execution.

Which issue(s) this PR fixes: Updates #1104

Does this PR introduce a user-facing change?:

NONE

What type of PR is this? /area conformance

What this PR does / why we need it: Adds a conformance test that validates hostname intersection between HTTPRoutes and Listeners.

Also updates the "WaitsForConsistency" helper to retry immediately after a successful request, to speed up test execution.

Which issue(s) this PR fixes: Updates #1104

Does this PR introduce a user-facing change?:

NONE

What type of PR is this? /area conformance

What this PR does / why we need it: Adds a conformance test that validates hostname intersection between HTTPRoutes and Listeners.

Also updates the "WaitsForConsistency" helper to retry immediately after a successful request, to speed up test execution.

Which issue(s) this PR fixes: Updates #1104

Does this PR introduce a user-facing change?:

NONE

What type of PR is this? /area conformance

What this PR does / why we need it: Adds a conformance test that validates hostname intersection between HTTPRoutes and Listeners.

Also updates the "WaitsForConsistency" helper to retry immediately after a successful request, to speed up test execution.

Which issue(s) this PR fixes: Updates #1104

Does this PR introduce a user-facing change?:

NONE

/kind cleanup

Does this PR introduce a user-facing change?:

NONE

in some cases, memory values for a node will not include the 'Mi' suffix:

10.145.197.168   42125m (75%)     148700m (265%)     221838Mi (82%)          416923Mi (154%)
10.145.197.169   45325m (80%)     121200m (216%)     62346Mi (23%)           180263Mi (66%)
10.145.197.170   14425m (25%)     37700m (67%)       45346Mi (16%)           100345Mi (37%)
162.150.14.214   13790m (24%)     45700m (81%)       39411368960000m (29%)   106336625408000m (78%)
162.150.14.215   13790m (24%)     39700m (70%)       38874498048000m (28%)   90767368960000m (67%)
162.150.14.216   16790m (29%)     42700m (76%)       46390690816000m (34%)   98283561728000m (72%)
162.150.14.217   12490m (22%)     39200m (70%)       38606062592000m (28%)   91841110784000m (68%)

In these cases, the report is wrong. need to change the logic here: https://github.com/robscott/kube-capacity/blob/master/pkg/capacity/resources.go#L356

for example, use more specific requestString and limitString so the code does not fall on the wrong unit: Example: add requestStringM() and limitStringM() that only converts Memory units to avoid the problem::

func (tp *tablePrinter) printClusterLine() {
	tp.printLine(&tableLine{
		node:           "*",
		namespace:      "*",
		pod:            "*",
		container:      "*",
		cpuRequests:    tp.cm.cpu.requestString(tp.availableFormat),
		cpuLimits:      tp.cm.cpu.limitString(tp.availableFormat),
		cpuUtil:        tp.cm.cpu.utilString(tp.availableFormat),
		memoryRequests: tp.cm.memory.requestStringM(tp.availableFormat),
		memoryLimits:   tp.cm.memory.limitStringM(tp.availableFormat),
		memoryUtil:     tp.cm.memory.utilString(tp.availableFormat),
		podCount:       tp.cm.podCount.podCountString(),
	})
}

func (tp *tablePrinter) printNodeLine(nodeName string, nm *nodeMetric) {
	tp.printLine(&tableLine{
		node:           nodeName,
		namespace:      "*",
		pod:            "*",
		container:      "*",
		cpuRequests:    nm.cpu.requestString(tp.availableFormat),
		cpuLimits:      nm.cpu.limitString(tp.availableFormat),
		cpuUtil:        nm.cpu.utilString(tp.availableFormat),
		memoryRequests: nm.memory.requestStringM(tp.availableFormat),
		memoryLimits:   nm.memory.limitStringM(tp.availableFormat),
		memoryUtil:     nm.memory.utilString(tp.availableFormat),
		podCount:       nm.podCount.podCountString(),
	})
}

Hi community,

With my limited permissions, I have this error

kubectl resource-capacity --sort cpu.limit --util --pods                     
Error listing Nodes: nodes is forbidden: User "320144150" cannot list resource "nodes" in API group "" at the cluster scope

Is possible to use the tool with my limited RBAC permission?

Best regards, Jizu