Remove access from stale Profiles

[kimwnasptd]

Context

This is a sub-step from #8

After having an initial structure and the PMR class, the next step is to start working on the create_or_update_profiles(pmr) function. For this, the first step is to cover the logic that gets the PMR and then removes access of all contributors from this Profile.

For more information on this function please also take a look in our spec

The APs / RBs are filtered based on the user and role annotations. Only those that have both are considered "Contributor APs / RBs" and are subject to the create_or_update_profiles(pmr) function.

What needs to get done

1. Create the module that will host the create_or_update_profiles(pmr) function
2. Handle the logic of detecting which Profiles are stale (not in PMR)
3. For each stale Profile, remove the contributor RoleBindings and AuthorizationPolicies

Definition of Done

1. Have integration tests that ensures a Profile that doesn't belong to a PMR is deleted
2. The create_or_update_profiles(pmr) function will be removing access from all stale Profiles

[syncronize-issues-to-jira]

Thank you for reporting us your feedback!

The internal ticket has been created: https://warthogs.atlassian.net/browse/KF-6593.

This message was autogenerated