Hide Forgot
Description of problem: OpenShift Enterprise installation docs detail manual creation of service accounts and loading of image streams: 1. Creating the registry service account for the "non-production use" docker registry: https://docs.openshift.com/enterprise/3.1/install_config/install/docker_registry.html#non-production-use 2. Creating the router service account: https://docs.openshift.com/enterprise/3.1/install_config/install/deploy_router.html#creating-the-router-service-account 3. Creating image streams: https://docs.openshift.com/enterprise/3.1/install_config/install/first_steps.html#creating-image-streams-for-openshift-images (also includes xpaas-streams, xpaas-templates, db-templates, and quickstart-templates. They all exist already after install) These are all automated by the installer, so these do not need to be done manually (except for image streams being loaded, which might need to be done for some projects? I write more on this later) How reproducible: 100% Steps to Reproduce: 1. Configure system with installation pre-reqs 2. Install OpenShift Enterprise 3. Attempt to create any of the above mentioned service accounts or streams Actual results: The above mentioned service accounts and streams already exist. Expected results: Having to create them manually. Suggested Documentation Updates: Remove Steps 1 and 2 from: https://docs.openshift.com/enterprise/3.1/install_config/install/docker_registry.html#non-production-use 1. Create a new service account in the default project for the registry to run as. The following example creates a service account named registry: $ echo \ '{"kind":"ServiceAccount","apiVersion":"v1","metadata":{"name":"registry"}}' \ | oc create -n default -f - 2. To add the new registry service account to the list of users allowed to run privileged containers: Edit the privileged security context constraint (SCC): $ oc edit scc privileged Add a line under users with the user name system:serviceaccount:default:registry. ============================ Entire section: https://docs.openshift.com/enterprise/3.1/install_config/install/deploy_router.html#creating-the-router-service-account ============================ In this overview: https://docs.openshift.com/enterprise/3.1/install_config/install/first_steps.html#overview Perhaps it could be made clearer when/why this is step would be required for some projects. It is mentioned that these are made available by default in the 'openshift' project, and I thought that a new project would need this to be done, but in my test instance when I create a new project the streams are already there. So I think it could be explained more clearly when/why you'd need to do this. If we don't need to do this anymore, then this whole topic could be removed, or at the very least moved somewhere else and made more general about just loading other image streams, but not these specific ones. ============================ Don't forget to check for any links that might end up broken when you remove entire sections
WIP pull request submitted while I wait on some extra context: https://github.com/openshift/openshift-docs/pull/1536
Found some overlap between this bug and https://bugzilla.redhat.com/show_bug.cgi?id=1266117
*** Bug 1266117 has been marked as a duplicate of this bug. ***
Related to this BZ: https://github.com/openshift/openshift-ansible/pull/1519
Docs work merged march 8th: https://github.com/openshift/openshift-docs/pull/1536