From f8190d61ce663eaff8a213c08af0de4b921e4d44 Mon Sep 17 00:00:00 2001
From: antoniaklja <antoniaklja@gmail.com>
Date: Thu, 10 Jan 2019 23:50:53 +0100
Subject: [PATCH] Update security.md

---
 docs/security.md | 10 ++++++++--
 1 file changed, 8 insertions(+), 2 deletions(-)

diff --git a/docs/security.md b/docs/security.md
index cfedf8a4..743ee3c8 100644
--- a/docs/security.md
+++ b/docs/security.md
@@ -21,9 +21,15 @@ The list below describes all the default security setting configured by the **je
 
 If you would like to dig a little bit into the code, take a look [here](../pkg/controller/jenkins/configuration/base/resources/base_configuration_configmap.go).
 
-## Jenkins API access
+## Jenkins API
 
-**jenkins-operator** generates and configures Basic Authentication token for Jenkins go client stores it in a Kubernetes Secret.
+The **jenkins-operator** generates and configures Basic Authentication token for Jenkins go client and stores it in a Kubernetes Secret.
+
+## Kubernetes
+
+Kubernetes API permissions are limited by the following RBAC roles:
+- [jenkins-operator role](../deploy/role.yaml)  
+- [Jenkins Master role](../pkg/controller/jenkins/configuration/base/resources/rbac.go)
 
 ## Report a Security Vulnerability