At this point, perftune jobs that run in scylla-operator-node-tuning namespace use the default ServiceAccount which makes it impossible to change the individual permissions of perftune jobs that need to run privileged operations. We should wire up a dedicated service account for them which will also unblock running them on OpenShift where they need to be granted additional RBAC rules.
At this point, perftune jobs that run in
scylla-operator-node-tuning
namespace use the default ServiceAccount which makes it impossible to change the individual permissions of perftune jobs that need to run privileged operations. We should wire up a dedicated service account for them which will also unblock running them on OpenShift where they need to be granted additional RBAC rules.