From f4299ba94a56f29ab556655eaebaa40b88b72495 Mon Sep 17 00:00:00 2001
From: lisguo <lguo25@gmail.com>
Date: Wed, 11 Sep 2024 15:41:22 -0400
Subject: [PATCH] Remove unused privileges for leases, ingress, and openshift
 routes

---
 .../templates/operator-clusterrole.yaml               | 11 +----------
 1 file changed, 1 insertion(+), 10 deletions(-)

diff --git a/charts/amazon-cloudwatch-observability/templates/operator-clusterrole.yaml b/charts/amazon-cloudwatch-observability/templates/operator-clusterrole.yaml
index 6aeec293..ef603939 100644
--- a/charts/amazon-cloudwatch-observability/templates/operator-clusterrole.yaml
+++ b/charts/amazon-cloudwatch-observability/templates/operator-clusterrole.yaml
@@ -41,13 +41,4 @@ rules:
   verbs: [ "get","patch","update" ]
 - apiGroups: [ "cloudwatch.aws.amazon.com" ]
   resources: [ "instrumentations" ]
-  verbs: [ "get","list","patch","update","watch" ]
-- apiGroups: [ "coordination.k8s.io" ]
-  resources: [ "leases" ]
-  verbs: [ "create","get","list","update" ]
-- apiGroups: [ "networking.k8s.io" ]
-  resources: [ "ingresses" ]
-  verbs: [ "create","delete","get","list","patch","update","watch" ]
-- apiGroups: [ "route.openshift.io" ]
-  resources: [ "routes", "routes/custom-host" ]
-  verbs: [ "create","delete","get","list","patch","update","watch" ]
+  verbs: [ "get","list","patch","update","watch" ]
\ No newline at end of file