nexus-operator
nexus-operator copied to clipboard
Add SCC to the Service Account in OCP
Having the operator's Service Account using a restrictive SCC would improve the operator's security.
I have an initial implementation of this that is failing to build due to some dependency issues. The libraries we're using seem to be somewhat incompatible as they are now, let's keep a close watch to continue this as soon as possible.
At the moment the cluster admin must add an SCC to the Service Account in order to be able to start pods correctly in OCP 3.x. (#41) and if this was implemented it wouldn't be necessary.