Skip to content

Commit ca9e5eb

Browse files
ciiayciiay
committed
Fixed formatting
Signed-off-by: Yi Cai <yicai@redhat.com>
1 parent bfdf819 commit ca9e5eb

File tree

1 file changed

+13
-12
lines changed

1 file changed

+13
-12
lines changed

docs/Integrate GitOps with Secrets Management.md

Lines changed: 13 additions & 12 deletions
Original file line numberDiff line numberDiff line change
@@ -267,20 +267,21 @@ oc adm policy add-scc-to-user privileged -z csi-secrets-store-provider-aws -n op
267267
```
268268
269269
e. Check the role policy on AWS to confirm the <aws_region> of **Resource** in role policy matches the cluster region.
270+
270271
```
271272
{
272-
"Version": "2012-10-17",
273-
"Statement": [
274-
{
275-
"Effect": "Allow",
276-
"Action": [
277-
"secretsmanager:GetSecretValue",
278-
"secretsmanager:DescribeSecret"
279-
],
280-
"Resource": "arn:aws:secretsmanager:<aws_region>:<aws_account_id>:secret:your-secret-xxxxxx"
281-
}
282-
]
283-
}
273+
"Version": "2012-10-17",
274+
"Statement": [
275+
{
276+
"Effect": "Allow",
277+
"Action": [
278+
"secretsmanager:GetSecretValue",
279+
"secretsmanager:DescribeSecret"
280+
],
281+
"Resource": "arn:aws:secretsmanager:<aws_region>:<aws_account_id>:secret:your-secret-xxxxxx"
282+
}
283+
]
284+
}
284285
```
285286
286287
f. Bind the service account with the role ARN by running the following command:

0 commit comments

Comments
 (0)