Skip to content

Commit

Permalink
[OpenShift] Fixes rbac for Operator service account
Browse files Browse the repository at this point in the history 
Operator's service account cannot create rolebinding from clusterrole
which has roles it doesn't posses for which it requires `bind` verb.
and to create clusteroles it requires `escalate` verb if roles mentioned
in clusterrole are not possesed by it.

Signed-off-by: Shivam Mukhade <[email protected]>
  • Loading branch information
@tekton-robot
Shivam Mukhade authored and tekton-robot committed Aug 23, 2021
1 parent 543d33c commit a1a0d67
Showing 1 changed file with 2 additions and 0 deletions.
2 changes: 2 additions & 0 deletions config/openshift/role.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -103,6 +103,8 @@ rules:
- list
- update
- watch
- bind
- escalate
- apiGroups:
- ""
resources:
Expand Down

0 comments on commit a1a0d67

Please sign in to comment.