summaryrefslogtreecommitdiffstats
path: root/roles/ansible_service_broker
diff options
context:
space:
mode:
authorScott Dodson <sdodson@redhat.com>2018-01-16 09:36:33 -0500
committerGitHub <noreply@github.com>2018-01-16 09:36:33 -0500
commitdf19291645d900e81804c10201e6c3daf2569c53 (patch)
tree743ebe0e8977672be4b3581b144923e7b1e90d13 /roles/ansible_service_broker
parent069073713e4038938f685a3553d1c608fcc8123a (diff)
parentd11b05456ab1b35708fa23269ec861dd7980923e (diff)
downloadopenshift-df19291645d900e81804c10201e6c3daf2569c53.tar.gz
openshift-df19291645d900e81804c10201e6c3daf2569c53.tar.bz2
openshift-df19291645d900e81804c10201e6c3daf2569c53.tar.xz
openshift-df19291645d900e81804c10201e6c3daf2569c53.zip
Merge pull request #6536 from shawn-hurley/adding-asb-permissions
Adding ability for ASB to interact with network resources.
Diffstat (limited to 'roles/ansible_service_broker')
-rw-r--r--roles/ansible_service_broker/tasks/install.yml9
1 files changed, 9 insertions, 0 deletions
diff --git a/roles/ansible_service_broker/tasks/install.yml b/roles/ansible_service_broker/tasks/install.yml
index ba2f7293b..1bc1b5e43 100644
--- a/roles/ansible_service_broker/tasks/install.yml
+++ b/roles/ansible_service_broker/tasks/install.yml
@@ -72,6 +72,15 @@
- apiGroups: ["image.openshift.io", ""]
resources: ["images"]
verbs: ["get", "list"]
+ - apiGroups: ["network.openshift.io"]
+ resources: ["clusternetworks", "netnamespaces"]
+ verbs: ["get"]
+ - apiGroups: ["network.openshift.io"]
+ resources: ["netnamespaces"]
+ verbs: ["update"]
+ - apiGroups: ["networking.k8s.io"]
+ resources: ["networkpolicies"]
+ verbs: ["create", "delete"]
- name: Create asb-access cluster role
oc_clusterrole: