From 89d11d1d0669ecfb3bf936950ad8989b118a4265 Mon Sep 17 00:00:00 2001
From: friedrich goerz <friedrich.goerz@netgo.de>
Date: Thu, 20 Oct 2022 10:55:34 +0200
Subject: [PATCH] NOTICKET: detected bug in failed rollout helm secret due to
 missing RBAC permissions

---
 roles/kubernetes/argocd/defaults/main.yml | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/roles/kubernetes/argocd/defaults/main.yml b/roles/kubernetes/argocd/defaults/main.yml
index b7fbf81..855075a 100644
--- a/roles/kubernetes/argocd/defaults/main.yml
+++ b/roles/kubernetes/argocd/defaults/main.yml
@@ -54,6 +54,16 @@ k8s_argocd_helm__release_values:
         additionalLabels:
           release: "{{ k8s_prometheus_helm__name }}"
   repoServer:
+    serviceAccount:
+      create: true
+      name: argo-cd-argocd-repo-server
+    rbac:
+    - apiGroups:
+      - ""
+      resources:
+      - secrets
+      verbs:
+      - get
     logLevel: info
     logFormat: json
     metrics: