Home Explore Help
Register Sign In
shixiong
/
okd
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

Merge pull request #1394 from liggitt/system-authenticated-oauth

Don't automatically give additional permissions to all OAuth users on upgrade
Brenton Leanhardt 9 years ago
parent
6afdbf50e8 a2c7847c6c
commit
9160b641b7
2 changed files with 2 additions and 0 deletions
Split View Show Diff Stats
  1. 1 0
      playbooks/common/openshift-cluster/upgrades/v3_0_to_v3_1/upgrade.yml
  2. 1 0
      playbooks/common/openshift-cluster/upgrades/v3_1_minor/upgrade.yml

+ 1 - 0
playbooks/common/openshift-cluster/upgrades/v3_0_to_v3_1/upgrade.yml
View File 

@@ -501,6 +501,7 @@
 
       {{ openshift.common.admin_binary}} --config={{ openshift.common.config_base }}/master/admin.kubeconfig
 
       policy reconcile-cluster-role-bindings
 
       --exclude-groups=system:authenticated
 
+      --exclude-groups=system:authenticated:oauth
 
       --exclude-groups=system:unauthenticated
 
       --exclude-users=system:anonymous
 
       --additive-only=true --confirm

+ 1 - 0
playbooks/common/openshift-cluster/upgrades/v3_1_minor/upgrade.yml
View File 

@@ -109,6 +109,7 @@
 
       {{ openshift.common.admin_binary}} --config={{ openshift.common.config_base }}/master/admin.kubeconfig
 
       policy reconcile-cluster-role-bindings
 
       --exclude-groups=system:authenticated
 
+      --exclude-groups=system:authenticated:oauth
 
       --exclude-groups=system:unauthenticated
 
       --exclude-users=system:anonymous
 
       --additive-only=true --confirm