From 5985759680cf08bdd6d371d91514393c017c9b5a Mon Sep 17 00:00:00 2001 From: Razvan-Daniel Mihai <84674+razvan@users.noreply.github.com> Date: Tue, 15 Aug 2023 10:11:59 +0200 Subject: [PATCH] Remove local file. --- druid-scc.yaml | 70 -------------------------------------------------- 1 file changed, 70 deletions(-) delete mode 100644 druid-scc.yaml diff --git a/druid-scc.yaml b/druid-scc.yaml deleted file mode 100644 index 71441cd5..00000000 --- a/druid-scc.yaml +++ /dev/null @@ -1,70 +0,0 @@ ---- -apiVersion: rbac.authorization.k8s.io/v1 -kind: ClusterRole -metadata: - name: druid-clusterrole -rules: - - apiGroups: - - "" - resources: - - configmaps - - secrets - - serviceaccounts - verbs: - - get - - apiGroups: - - events.k8s.io - resources: - - events - verbs: - - create - - apiGroups: - - security.openshift.io - resources: - - securitycontextconstraints - resourceNames: - - druid-scc - verbs: - - use ---- -apiVersion: security.openshift.io/v1 -kind: SecurityContextConstraints -metadata: - name: druid-scc - annotations: - kubernetes.io/description: |- - This resource is derived from hostmount-anyuid. It provides all the features of the - restricted SCC but allows host mounts and any UID by a pod. This is primarily - used by the persistent volume recycler. WARNING: this SCC allows host file - system access as any UID, including UID 0. Grant with caution. - release.openshift.io/create-only: "true" -allowHostDirVolumePlugin: true -allowHostIPC: false -allowHostNetwork: false -allowHostPID: false -allowHostPorts: false -allowPrivilegeEscalation: true -allowPrivilegedContainer: false -allowedCapabilities: null -defaultAddCapabilities: null -fsGroup: - type: RunAsAny -groups: [] -priority: null -readOnlyRootFilesystem: false -runAsUser: - type: RunAsAny -seLinuxContext: - type: MustRunAs -supplementalGroups: - type: RunAsAny -volumes: - - configMap - - downwardAPI - - emptyDir - - hostPath - - nfs - - persistentVolumeClaim - - projected - - secret - - ephemeral