From 76604af85f5ebe4ac253682e26fe3238480fbc42 Mon Sep 17 00:00:00 2001
From: Thuan Vo <thvo@redhat.com>
Date: Wed, 17 Aug 2022 11:40:05 -0400
Subject: [PATCH] fix(rbac): add back endpoints to role for controller

---
 config/rbac/role.yaml                       | 1 +
 internal/controllers/cryostat_controller.go | 2 +-
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/config/rbac/role.yaml b/config/rbac/role.yaml
index 7e65e3080..07406112a 100644
--- a/config/rbac/role.yaml
+++ b/config/rbac/role.yaml
@@ -74,6 +74,7 @@ rules:
   - ""
   resources:
   - configmaps
+  - endpoints
   - events
   - persistentvolumeclaims
   - pods
diff --git a/internal/controllers/cryostat_controller.go b/internal/controllers/cryostat_controller.go
index 3ce49d0d3..a1d34add8 100644
--- a/internal/controllers/cryostat_controller.go
+++ b/internal/controllers/cryostat_controller.go
@@ -126,7 +126,7 @@ var reportsDeploymentConditions = deploymentConditionTypeMap{
 	operatorv1beta1.ConditionTypeReportsDeploymentReplicaFailure: appsv1.DeploymentReplicaFailure,
 }
 
-// +kubebuilder:rbac:namespace=system,groups="",resources=pods;services;services/finalizers;persistentvolumeclaims;events;configmaps;secrets;serviceaccounts,verbs=*
+// +kubebuilder:rbac:namespace=system,groups="",resources=pods;services;services/finalizers;endpoints;persistentvolumeclaims;events;configmaps;secrets;serviceaccounts,verbs=*
 // +kubebuilder:rbac:namespace=system,groups="",resources=replicationcontrollers,verbs=get
 // +kubebuilder:rbac:namespace=system,groups=rbac.authorization.k8s.io,resources=roles;rolebindings,verbs=create;get;list;update;watch;delete
 // +kubebuilder:rbac:groups=rbac.authorization.k8s.io,resources=clusterrolebindings,verbs=create;get;list;update;watch;delete