From 1f883c50759767a4bc4fdbfb04e9fdada6790cbf Mon Sep 17 00:00:00 2001
From: Shawn Hurley <shawn.hurley21@gmail.com>
Date: Tue, 19 Dec 2017 12:29:57 -0500
Subject: adding ability to interact with network resources.

---
 roles/ansible_service_broker/tasks/install.yml | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/roles/ansible_service_broker/tasks/install.yml b/roles/ansible_service_broker/tasks/install.yml
index 4ca47d074..52e20a72e 100644
--- a/roles/ansible_service_broker/tasks/install.yml
+++ b/roles/ansible_service_broker/tasks/install.yml
@@ -72,6 +72,12 @@
       - apiGroups: ["image.openshift.io", ""]
         resources: ["images"]
         verbs: ["get", "list"]
+      - apiGroups: ["network.openshift.io"]
+        resources: ["clusternetworks", "netnamespaces"]
+        verbs: ["get"]
+      - apiGroups: ["network.openshift.io"]
+        resources: ["netnamespaces"]
+        verbs: ["update"]
 
 - name: Create asb-access cluster role
   oc_clusterrole:
-- 
cgit v1.2.3


From d11b05456ab1b35708fa23269ec861dd7980923e Mon Sep 17 00:00:00 2001
From: Shawn Hurley <shawn.hurley21@gmail.com>
Date: Fri, 5 Jan 2018 14:12:45 -0500
Subject: adding ability to add network policy objects.

---
 roles/ansible_service_broker/tasks/install.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/roles/ansible_service_broker/tasks/install.yml b/roles/ansible_service_broker/tasks/install.yml
index 52e20a72e..09f7756d3 100644
--- a/roles/ansible_service_broker/tasks/install.yml
+++ b/roles/ansible_service_broker/tasks/install.yml
@@ -78,6 +78,9 @@
       - apiGroups: ["network.openshift.io"]
         resources: ["netnamespaces"]
         verbs: ["update"]
+      - apiGroups: ["networking.k8s.io"]
+        resources: ["networkpolicies"]
+        verbs: ["create", "delete"]
 
 - name: Create asb-access cluster role
   oc_clusterrole:
-- 
cgit v1.2.3