From f4324be7bafd9d94937cef7d724e1e8d008d9469 Mon Sep 17 00:00:00 2001
From: Sergiusz Urbaniak <sergiusz.urbaniak@gmail.com>
Date: Fri, 1 Oct 2021 16:18:36 +0200
Subject: [PATCH] podsecurity: enforce privileged for  openshift-machine-api
 namespace

---
 install/0000_30_machine-api-operator_00_namespace.yaml | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/install/0000_30_machine-api-operator_00_namespace.yaml b/install/0000_30_machine-api-operator_00_namespace.yaml
index 6ab76f57e5..6e11d236bd 100644
--- a/install/0000_30_machine-api-operator_00_namespace.yaml
+++ b/install/0000_30_machine-api-operator_00_namespace.yaml
@@ -12,4 +12,6 @@ metadata:
     name: openshift-machine-api
     # allow openshift-monitoring to look for ServiceMonitor objects in this namespace
     openshift.io/cluster-monitoring: "true"
-
+    pod-security.kubernetes.io/enforce: privileged
+    pod-security.kubernetes.io/audit: privileged
+    pod-security.kubernetes.io/warn: privileged