Merge pull request #59 from oracle-devrel/ci

RahulMR42 · web-flow · commit 9637973db2b6 · 2023-04-20T14:57:17.000+05:30
[BTPM-272] policy update
diff --git a/oci-coderepo-examples/oci-devops-coderepo-with-bitbucketcloud/README.md b/oci-coderepo-examples/oci-devops-coderepo-with-bitbucketcloud/README.md
@@ -69,8 +69,9 @@ ALL {resource.type = 'devopsrepository', resource.compartment.id = 'COMPARMENT O
 - Create a policy (Ensure to create it under the ROOT of tenancy) for the dynamic groups with the below policy statement.
 
 ```
-Allow dynamic-group mr-devops-policy-checker-dg-connection to read secret-family in compartment <compartment name>
-Allow dynamic-group mr-devops-policy-checker-dg-connection to use ons-topics in compartment <compartment name>
+Allow dynamic-group <NAME OF THE DG> to read secret-family in compartment <compartment name>
+Allow dynamic-group <NAME OF THE DG>  to use ons-topics in compartment <compartment name>
+Allow dynamic-group <NAME OF THE DG>  to use devops-connection in compartment <compartment name>
 ```
 
 - Create a notification topic, that will be used for DevOps - https://docs.oracle.com/en-us/iaas/Content/Notification/Tasks/managingtopicsandsubscriptions.htm#createTopic
diff --git a/oci-coderepo-examples/oci-devops-coderepo-with-github/README.md b/oci-coderepo-examples/oci-devops-coderepo-with-github/README.md
@@ -78,7 +78,8 @@ ALL {resource.type = 'devopsrepository', resource.compartment.id = 'COMPARMENT O
 - Create a policy (Ensure to create it under the **ROOT of tenancy**) for the dynamic groups with below policy statement.
 
 ```
-Allow dynamic-group mr-devops-policy-checker-dg-connection to read secret-family in compartment <compartment name>
+Allow dynamic-group <NAME OF THE DG> to read secret-family in compartment <compartment name>
+Allow dynamic-group <NAME OF THE DG>  to use devops-connection in compartment <compartment name>
 
 ```
 
diff --git a/oci-coderepo-examples/oci-devops-coderepo-with-gitlab/README.md b/oci-coderepo-examples/oci-devops-coderepo-with-gitlab/README.md
@@ -74,7 +74,8 @@ ALL {resource.type = 'devopsrepository', resource.compartment.id = 'COMPARMENT O
 - Create a policy (Ensure to create it under the ROOT of tenancy) for the dynamic groups with below policy statement.
 
 ```
-Allow dynamic-group mr-devops-policy-checker-dg-connection to read secret-family in compartment <compartment name>
+Allow dynamic-group <NAME OF THE DG> to read secret-family in compartment <compartment name>
+Allow dynamic-group <NAME OF THE DG> to use devops-connection in compartment <compartment name>
 
 ```
 
diff --git a/oci-pipeline-examples/oci-devops-graal-micronaut-deploy-to-instances/README.md b/oci-pipeline-examples/oci-devops-graal-micronaut-deploy-to-instances/README.md
@@ -59,10 +59,11 @@ All {instance.compartment.id = '<YOUR_COMPARMENT_OCID>'}
 ```java
 Allow dynamic-group <YOUR_DynamicGroup_NAME-1> to read secret-family in compartment <YOUR_COMPARTMENT_NAME>
 Allow dynamic-group <YOUR_DynamicGroup_NAME-1> to manage ons-topics in compartment <YOUR_COMPARTMENT_NAME>
-Allow dynamic-group <YOUR_DynamicGroup_NAME-2> to use instance-agent-command-execution-family in compartment <YOUR_COMPARTMENT_NAME>
-Allow dynamic-group <YOUR_DynamicGroup_NAME-2> to manage objects in compartment <YOUR_COMPARTMENT_NAME>    
+Allow dynamic-group <YOUR_DynamicGroup_NAME-2> to use instance-agent-command-execution-family in compartment <YOUR_COMPARTMENT_NAME> 
 Allow dynamic-group <YOUR_DynamicGroup_NAME-2> to manage objects in compartment <YOUR_COMPARTMENT_NAME>
 Allow dynamic-group <YOUR_DynamicGroup_NAME-2> to manage all-artifacts in compartment <YOUR_COMPARTMENT_NAME>
+Allow dynamic-group <YOUR_DynamicGroup_NAME-1> to read instance-family in compartment <YOUR_COMPARTMENT_NAME>
+Allow dynamic-group <YOUR_DynamicGroup_NAME-1> to read vnics in compartment <YOUR_COMPARTMENT_NAME>
 ```
 
 ### Create an artifact repo.
