From af84c8a30b2cf537bcc5a159038fe2391bed99e0 Mon Sep 17 00:00:00 2001
From: Justin Riley <justin.t.riley@gmail.com>
Date: Tue, 19 Nov 2024 11:03:48 -0500
Subject: [PATCH] remove undefined allowedVolumeTypes property in scc

Replaced this with volumes: ["*"] given that allowedVolumeTypes property
doesn't exist. This is also the default value when the volumes property
is not explicitly defined.
---
 .../securitycontextconstraints.yaml                          | 5 ++---
 .../securitycontextconstraints.yaml                          | 5 ++---
 2 files changed, 4 insertions(+), 6 deletions(-)

diff --git a/csi-wekafsplugin/base/security.openshift.io/securitycontextconstraints/csi-wekafsplugin-controller-scc/securitycontextconstraints.yaml b/csi-wekafsplugin/base/security.openshift.io/securitycontextconstraints/csi-wekafsplugin-controller-scc/securitycontextconstraints.yaml
index 6a524deb..e542acac 100644
--- a/csi-wekafsplugin/base/security.openshift.io/securitycontextconstraints/csi-wekafsplugin-controller-scc/securitycontextconstraints.yaml
+++ b/csi-wekafsplugin/base/security.openshift.io/securitycontextconstraints/csi-wekafsplugin-controller-scc/securitycontextconstraints.yaml
@@ -8,9 +8,6 @@ allowHostPID: false
 allowPrivilegedContainer: true
 allowHostDirVolumePlugin: true
 allowHostNetwork: true
-allowedVolumeTypes:
-  - hostPath
-  - secret
 readOnlyRootFilesystem: false
 allowHostPorts: true
 runAsUser:
@@ -23,3 +20,5 @@ supplementalGroups:
   type: RunAsAny
 users:
   - system:serviceaccount:csi-wekafsplugin:csi-wekafsplugin-controller
+volumes:
+  - '*'
diff --git a/csi-wekafsplugin/base/security.openshift.io/securitycontextconstraints/csi-wekafsplugin-node-scc/securitycontextconstraints.yaml b/csi-wekafsplugin/base/security.openshift.io/securitycontextconstraints/csi-wekafsplugin-node-scc/securitycontextconstraints.yaml
index 74c8f9fe..786d683d 100644
--- a/csi-wekafsplugin/base/security.openshift.io/securitycontextconstraints/csi-wekafsplugin-node-scc/securitycontextconstraints.yaml
+++ b/csi-wekafsplugin/base/security.openshift.io/securitycontextconstraints/csi-wekafsplugin-node-scc/securitycontextconstraints.yaml
@@ -8,9 +8,6 @@ allowHostPID: false
 allowPrivilegedContainer: true
 allowHostDirVolumePlugin: true
 allowHostNetwork: true
-allowedVolumeTypes:
-  - hostPath
-  - secret
 readOnlyRootFilesystem: false
 allowHostPorts: true
 runAsUser:
@@ -23,3 +20,5 @@ supplementalGroups:
   type: RunAsAny
 users:
   - system:serviceaccount:csi-wekafsplugin:csi-wekafsplugin-node
+volumes:
+  - '*'