Document URL: https://docs.openshift.com/container-platform/3.11/dev_guide/service_accounts.html Section Number and Name: Describe the issue: Currently this contains the text: system:serviceaccount Includes all service accounts in the system. system:serviceaccount:<project> Includes all service accounts in the specified project. For example, to allow all service accounts in all projects to view resources in the top-secret project: $ oc policy add-role-to-group view system:serviceaccount -n top-secret To allow all service accounts in the managers project to edit resources in the top-secret project: $ oc policy add-role-to-group edit system:serviceaccount:managers -n top-secret But This should in fact be: system:serviceaccounts <---- with an s Includes all service accounts in the system. system:serviceaccounts:<project> Includes all service accounts in the specified project. For example, to allow all service accounts in all projects to view resources in the top-secret project: $ oc policy add-role-to-group view system:serviceaccounts -n top-secret To allow all service accounts in the managers project to edit resources in the top-secret project: $ oc policy add-role-to-group edit system:serviceaccounts:managers -n top-secret Suggestions for improvement: Additional information:
Hello Team, Any updates on this issue Regards, Kedar
Made changes as described: Corrected the text as provided in description. This can be reviewed here: https://github.com/openshift/openshift-docs/pull/20792 Moving this bug to ON_QA
Verified.
PR merged directly into enterprise-3.11
Fix online: https://docs.openshift.com/container-platform/3.11/dev_guide/service_accounts.html#dev-sa-user-names-and-groups https://access.redhat.com/documentation/en-us/openshift_container_platform/3.11/html/developer_guide/dev-guide-service-accounts#dev-sa-user-names-and-groups