From 731b265e56920b776b38c66a23f7c83f5a6a0187 Mon Sep 17 00:00:00 2001 From: Scott Dodson Date: Tue, 15 Nov 2016 17:14:41 -0500 Subject: Add rolebinding-reader Fixes Bug 1390913 Fixes BZ1390913 --- roles/openshift_hosted_logging/tasks/deploy_logging.yaml | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/roles/openshift_hosted_logging/tasks/deploy_logging.yaml b/roles/openshift_hosted_logging/tasks/deploy_logging.yaml index 0162d1fb0..4feb5abcf 100644 --- a/roles/openshift_hosted_logging/tasks/deploy_logging.yaml +++ b/roles/openshift_hosted_logging/tasks/deploy_logging.yaml @@ -71,6 +71,13 @@ register: fluentd2_output failed_when: "fluentd2_output.rc == 1 and 'exists' not in fluentd2_output.stderr" + - name: "Add rolebinding-reader to aggregated-logging-elastic-search" + command: > + {{ openshift.common.client_binary }} adm policy add-cluster-role-to-user rolebinding-reader \ + system:serviceaccount:logging:aggregated-logging-elasticsearch + register: rolebinding_reader_output + failed_when: "rolebinding_reader_output == 1 and 'exists' not in rolebinding_reader_output.stderr" + - name: "Create ConfigMap for deployer parameters" command: > {{ openshift.common.client_binary}} --config={{ mktemp.stdout }}/admin.kubeconfig create configmap logging-deployer {{ deployer_cmap_params }} -- cgit v1.2.3