From ff1fd3bc1d671ac3767eb083118d4e1158e4a488 Mon Sep 17 00:00:00 2001
From: Tom Pantelis <tompantelis@gmail.com>
Date: Mon, 6 May 2024 17:20:36 -0400
Subject: [PATCH] Restore CRUD Secret RBAC permissons for the operator Role

CRUD access to Secrets were removed but it turns out we need it in
order to sync Secrets from the broker namespace to the
submariner-operator namespace.

Signed-off-by: Tom Pantelis <tompantelis@gmail.com>
---
 config/rbac/submariner-operator/role.yaml | 10 ++++++++++
 pkg/embeddedyamls/yamls.go                | 10 ++++++++++
 2 files changed, 20 insertions(+)

diff --git a/config/rbac/submariner-operator/role.yaml b/config/rbac/submariner-operator/role.yaml
index d7784ee8a..943b35340 100644
--- a/config/rbac/submariner-operator/role.yaml
+++ b/config/rbac/submariner-operator/role.yaml
@@ -14,6 +14,16 @@ rules:
       - get
       - create
       - update
+  - apiGroups:
+      - ""
+    resources:
+      # For syncing Secrets from the broker
+      - secrets
+    verbs:
+      - get
+      - create
+      - update
+      - delete
   - apiGroups:
       - ""
     resources:
diff --git a/pkg/embeddedyamls/yamls.go b/pkg/embeddedyamls/yamls.go
index 38f1d76db..65625a052 100644
--- a/pkg/embeddedyamls/yamls.go
+++ b/pkg/embeddedyamls/yamls.go
@@ -2617,6 +2617,16 @@ rules:
       - get
       - create
       - update
+  - apiGroups:
+      - ""
+    resources:
+      # For syncing Secrets from the broker
+      - secrets
+    verbs:
+      - get
+      - create
+      - update
+      - delete
   - apiGroups:
       - ""
     resources: