Oc policy

From NovaOrdis Knowledge Base
Jump to navigation Jump to search

Internal

Overview

Subcommands

add-role-to-user

Add a local role - by creating a binding - to users or service accounts, for the current project, or, if '-n' is used, for the specified project: 

oc policy add-role-to-user <role-name> <user-name|service-account-name> [-n <project-name>]

oc policy add-role-to-user view system:serviceaccount:monitored-project:monitor-agent

oc policy add-role-to-user edit system:serviceaccount:cicd:jenkins -n dev

The last command adds a local binding in the dev project that gives the service account "cicd/jenkins" the role "edit" in project "dev".

add-role-to-group

oc policy add-role-to-group view system:serviceaccounts -n <some-project>
Retrieved from "https://kb.novaordis.com/index.php?title=Oc_policy&oldid=29974"