From 08844459483250d6e616b63bc189087fea2c45f1 Mon Sep 17 00:00:00 2001 From: Adam Miller Date: Thu, 5 Oct 2017 22:41:46 +0000 Subject: [PATCH] apply custom osbs builder role to openshift system builder Signed-off-by: Adam Miller --- playbooks/groups/osbs-cluster.yml | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/playbooks/groups/osbs-cluster.yml b/playbooks/groups/osbs-cluster.yml index 6dae47142f..0cea685021 100644 --- a/playbooks/groups/osbs-cluster.yml +++ b/playbooks/groups/osbs-cluster.yml @@ -327,6 +327,12 @@ creates: "/etc/origin/koji-builder-policy-added" when: env == "production" environment: "{{ osbs_environment }}" + - name: set custom build policy for builder service account in openshift for osbs + shell: "oadm policy add-role-to-user -n default osbs-custom-build system:serviceaccount:default:builder && touch /etc/origin/koji-custom-build-policy-added" + args: + creates: "/etc/origin/koji-builder-policy-added" + when: env == "production" + environment: "{{ osbs_environment }}" - name: Manage docker images and image stream hosts: osbs-masters[0]