From 8a53385a22b3e9de2cde691a237662f785f61e43 Mon Sep 17 00:00:00 2001
From: Joel Takvorian <jtakvori@redhat.com>
Date: Mon, 15 Jan 2024 15:58:47 +0100
Subject: [PATCH] NETOBSERV-1324: allow fine-grained rbac

---
 loki_operator.md | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/loki_operator.md b/loki_operator.md
index 7330e6e..e1d66fd 100644
--- a/loki_operator.md
+++ b/loki_operator.md
@@ -84,12 +84,18 @@ Once the Loki stack is up and running, you need to configure NetObserv to commun
 
 ### User access
 
-You then need to define `ClusterRoleBindings` for allowed users or groups, such as [this one](./examples/loki-stack/rolebinding-user-test.yaml) for a user named `test`. This can also be done from the CLI:
+You then need to define `ClusterRoleBindings` or `RoleBindings` for allowed users or groups, such as [this one](./examples/loki-stack/rolebinding-user-test.yaml) for a user named `test`. This can also be done from the CLI:
 
 ```bash
 oc adm policy add-cluster-role-to-user netobserv-reader test
 ```
 
+Alternatively, you can use fine-grained roles per namespace:
+
+```bash
+oc adm policy add-role-to-user netobserv-reader test -n my-namespace
+```
+
 Cluster admins do not need this role binding.
 
 ### Testing multi-tenancy