Merge pull request #35034 from adellape/helm_scc

adellape · web-flow · commit 20540bc584ac · 2021-08-06T14:37:35.000-04:00
diff --git a/modules/osdk-create-cr.adoc b/modules/osdk-create-cr.adoc
@@ -60,6 +60,16 @@ ifndef::helm[]
 endif::[]
 ----
 
+ifdef::helm[]
+. The {app-proper} service account requires privileged access to run in {product-title}. Add the following security context constraint (SCC) to the service account for the `{app}-sample` pod:
++
+[source,terminal,subs="attributes+"]
+----
+$ oc adm policy add-scc-to-user \
+    anyuid system:serviceaccount:{app}-operator-system:{app}-sample
+----
+endif::[]
+
 . Create the CR:
 +
 [source,terminal,subs="attributes+"]
diff --git a/modules/osdk-quickstart.adoc b/modules/osdk-quickstart.adoc
@@ -35,7 +35,7 @@ You can build and deploy a simple {type}-based Operator for {app-proper} by usin
 
 . *Create a project.*
 
-.. Create your project:
+.. Create your project directory:
 +
 [source,terminal,subs="attributes+"]
 ----
@@ -143,6 +143,18 @@ $ make install
 $ make deploy IMG=<registry>/<user>/<image_name>:<tag>
 ----
 
+ifdef::helm[]
+. *Add a security context constraint (SCC).*
++
+The {app-proper} service account requires privileged access to run in {product-title}. Add the following SCC to the service account for the `{app}-sample` pod:
++
+[source,terminal,subs="attributes+"]
+----
+$ oc adm policy add-scc-to-user \
+    anyuid system:serviceaccount:{app}-operator-system:{app}-sample
+----
+endif::[]
+
 . *Create a sample custom resource (CR).*
 
 .. Create a sample CR:
