Skip to content

Commit

Permalink
Browse files Browse the repository at this point in the history
SCC RBAC implementation
  • Loading branch information
sabre1041 committed Aug 12, 2020
1 parent 6f4512b commit 6b4e728
Showing 1 changed file with 2 additions and 1 deletion.
3 changes: 2 additions & 1 deletion _test/deploy-gatekeeper.sh
Expand Up @@ -39,7 +39,8 @@ deploy_gatekeeper() {

echo ""
echo "Patching gatekeeper to work on OCP..."
oc adm policy add-scc-to-user anyuid system:serviceaccount:gatekeeper-system:gatekeeper-admin
oc create clusterrole allow-anyuid-scc --verb=use --resource=securitycontextconstraints.security.openshift.io --resource-name=anyuid
oc create rolebinding gatekeeper-anyuid-scc --serviceaccount=gatekeeper-system:gatekeeper-admin --clusterrole=allow-anyuid-scc -n gatekeeper-system
oc patch Deployment/gatekeeper-controller-manager --type json -p='[{"op": "remove", "path": "/spec/template/metadata/annotations"}]' -n gatekeeper-system

echo ""
Expand Down

0 comments on commit 6b4e728

Please sign in to comment.