From 57760e6076d9810dd559e375a40719cfa8bdd924 Mon Sep 17 00:00:00 2001
From: Miguel Duarte Barroso <mdbarroso@redhat.com>
Date: Tue, 19 Apr 2022 14:38:23 +0200
Subject: [PATCH] config, scc: add required parameters

According to openshift's API specification - [0] - the following
attributes are required:
- allowHostDirVolumePlugin
- allowHostIPC
- allowHostNetwork
- allowHostPID
- allowHostPorts
- allowPrivilegedContainer
- readOnlyRootFilesystem

This commits adds the required parameters to the SCCs that were missing
them.

[0] - https://docs.openshift.com/container-platform/4.10/rest_api/security_apis/securitycontextconstraints-security-openshift-io-v1.html

Signed-off-by: Miguel Duarte Barroso <mdbarroso@redhat.com>
---
 templates/scc.yaml.in | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/templates/scc.yaml.in b/templates/scc.yaml.in
index 70f96278..0e93721a 100644
--- a/templates/scc.yaml.in
+++ b/templates/scc.yaml.in
@@ -6,6 +6,10 @@ metadata:
 allowHostNetwork: true
 allowPrivilegedContainer: true
 allowHostDirVolumePlugin: true
+allowHostIPC: false
+allowHostPID: false
+allowHostPorts: false
+readOnlyRootFilesystem: false
 runAsUser:
   type: RunAsAny
 seLinuxContext: