Skip to content

Remove dependency on cluster-admin role #128

New issue
New issue
Open
Open
Remove dependency on cluster-admin role#128
Assignees
nastacio
Labels
choreGeneral upkeep of the repository, not a bug or enhancement
@nastacio

Description

@nastacio
nastacio
opened on Mar 28, 2022

Describe the bug
Many of the Cloud Paks installations have dependencies on having the cluster-admin role assigned to the user performing the installation. This is often unnecessary and a problem for many installations, where security policy require minimum privilege assigned to all roles.

To Reproduce
N/A, stated in the installation section of product documentation:

Expected behavior
Remove the assignment of cluster-admin roles to the ArgoCD openshift-gitops-argocd-application-controller service account and replace it with the creation of new Role (or ClusterRole) with the minimum set of privileges required to install the product.

Screenshots
If applicable, add screenshots to help explain your problem.

Additional context
Add any other context about the problem here.

Metadata

Metadata

Assignees

Labels

choreGeneral upkeep of the repository, not a bug or enhancement

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions