From 0108e77b546677836bec07ba5a6dc2c9d15d3357 Mon Sep 17 00:00:00 2001 From: Dylan Murray Date: Thu, 31 Oct 2024 10:43:17 -0400 Subject: [PATCH] Revert ":sparkles: Remove SCC Permissions to run rootless (#382)" This reverts commit 7961479537091efddd64975c66a4fa077ff8560e. --- .../konveyor-operator.clusterserviceversion.yaml | 10 +++++++++- helm/templates/rbac/hub_role.yaml | 8 ++++++++ 2 files changed, 17 insertions(+), 1 deletion(-) diff --git a/bundle/manifests/konveyor-operator.clusterserviceversion.yaml b/bundle/manifests/konveyor-operator.clusterserviceversion.yaml index 57c12c8b..4c68c0bd 100644 --- a/bundle/manifests/konveyor-operator.clusterserviceversion.yaml +++ b/bundle/manifests/konveyor-operator.clusterserviceversion.yaml @@ -103,7 +103,7 @@ metadata: categories: Modernization & Migration certified: "false" containerImage: quay.io/konveyor/tackle2-operator:latest - createdAt: "2024-10-09T15:56:59Z" + createdAt: "2024-08-19T17:42:17Z" description: Konveyor is an open-source application modernization platform that helps organizations safely and predictably modernize applications to Kubernetes at scale. @@ -331,6 +331,14 @@ spec: - '*' verbs: - '*' + - apiGroups: + - security.openshift.io + resourceNames: + - anyuid + resources: + - securitycontextconstraints + verbs: + - use serviceAccountName: tackle-hub - rules: - apiGroups: diff --git a/helm/templates/rbac/hub_role.yaml b/helm/templates/rbac/hub_role.yaml index 352b5b69..caf74792 100644 --- a/helm/templates/rbac/hub_role.yaml +++ b/helm/templates/rbac/hub_role.yaml @@ -12,3 +12,11 @@ rules: - '*' verbs: - '*' +- apiGroups: + - security.openshift.io + resourceNames: + - anyuid + resources: + - securitycontextconstraints + verbs: + - use \ No newline at end of file