agola: add rbac
This commit is contained in:
parent
3bd7672b7a
commit
89c21f3ab4
|
@ -5,4 +5,5 @@ resources:
|
|||
- deployment.yaml
|
||||
- external-secret.yaml
|
||||
- ingress.yaml
|
||||
- rbac.yaml
|
||||
- services.yaml
|
||||
|
|
59
flux/cluster/apps/gitops/agola/rbac.yaml
Normal file
59
flux/cluster/apps/gitops/agola/rbac.yaml
Normal file
|
@ -0,0 +1,59 @@
|
|||
apiVersion: rbac.authorization.k8s.io/v1beta1
|
||||
kind: ClusterRole
|
||||
metadata:
|
||||
name: agola
|
||||
namespace: gitops
|
||||
rules:
|
||||
- apiGroups:
|
||||
- ""
|
||||
resources:
|
||||
- nodes
|
||||
verbs:
|
||||
- "*"
|
||||
---
|
||||
apiVersion: rbac.authorization.k8s.io/v1beta1
|
||||
kind: Role
|
||||
metadata:
|
||||
name: agola
|
||||
namespace: gitops
|
||||
rules:
|
||||
- apiGroups:
|
||||
- ""
|
||||
- "coordination.k8s.io"
|
||||
resources:
|
||||
- nodes
|
||||
- pods
|
||||
- pods/exec
|
||||
- configmaps
|
||||
- leases
|
||||
- secrets
|
||||
verbs:
|
||||
- "*"
|
||||
---
|
||||
apiVersion: rbac.authorization.k8s.io/v1beta1
|
||||
kind: RoleBinding
|
||||
metadata:
|
||||
name: agola
|
||||
namespace: gitops
|
||||
roleRef:
|
||||
apiGroup: rbac.authorization.k8s.io
|
||||
kind: Role
|
||||
name: agola
|
||||
subjects:
|
||||
- kind: ServiceAccount
|
||||
name: default
|
||||
namespace: gitops
|
||||
---
|
||||
apiVersion: rbac.authorization.k8s.io/v1beta1
|
||||
kind: ClusterRoleBinding
|
||||
metadata:
|
||||
name: agola
|
||||
namespace: gitops
|
||||
roleRef:
|
||||
apiGroup: rbac.authorization.k8s.io
|
||||
kind: ClusterRole
|
||||
name: agola
|
||||
subjects:
|
||||
- kind: ServiceAccount
|
||||
name: default
|
||||
namespace: gitops
|
Loading…
Reference in a new issue