From f70a0fb833aca25c9179ce1b3f187a4dc0dea2e7 Mon Sep 17 00:00:00 2001
From: Cas Lubbers <clubbers@akamai.com>
Date: Tue, 29 Apr 2025 16:37:19 +0200
Subject: [PATCH] feat: allow gitea-operator to list pods in Gitea namespace

---
 charts/apl-gitea-operator/templates/rbac.yaml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/charts/apl-gitea-operator/templates/rbac.yaml b/charts/apl-gitea-operator/templates/rbac.yaml
index dbf778ce6f..a79a64377b 100644
--- a/charts/apl-gitea-operator/templates/rbac.yaml
+++ b/charts/apl-gitea-operator/templates/rbac.yaml
@@ -44,6 +44,10 @@ rules:
 - apiGroups: [""]
   resources: ["pods/exec"]
   verbs: ["create", "get", "post"]
+# Allows the operator to get, list and watch pods in the gitea namespace. This is necessary to wait for the gitea pod to be ready before executing commands.
+- apiGroups: [""]
+  resources: ["pods"]
+  verbs: ["get", "list", "watch"]
 ---
 # RoleBinding for the above Role in gitea namespace
 apiVersion: rbac.authorization.k8s.io/v1