From 0273250932cb7e4ab47aa32ef15cdbe7d9061d56 Mon Sep 17 00:00:00 2001
From: Leif Madsen <lmadsen@redhat.com>
Date: Mon, 18 Sep 2023 16:22:23 -0400
Subject: [PATCH] Remove nodes/metrics permission from ClusterRole

As part of least priviledge work, remove the nodes/metrics permission as
we're not scraping nodes for information. Everything appears to continue
working in STF without this permission.
---
 roles/servicetelemetry/tasks/component_prometheus.yml | 6 ------
 1 file changed, 6 deletions(-)

diff --git a/roles/servicetelemetry/tasks/component_prometheus.yml b/roles/servicetelemetry/tasks/component_prometheus.yml
index 9278841f1..891b6bd0b 100644
--- a/roles/servicetelemetry/tasks/component_prometheus.yml
+++ b/roles/servicetelemetry/tasks/component_prometheus.yml
@@ -26,12 +26,6 @@
       metadata:
         name: prometheus-stf
       rules:
-      - apiGroups:
-        - ""
-        resources:
-        - nodes/metrics
-        verbs:
-        - get
       - nonResourceURLs:
         - /metrics
         verbs: