Gitiles
Code Review Sign In
code.v1.dodo.cloud / pcloud / 69ff759f4e5bafc74f80cb2b72e4e417ec2edbbb / . / charts / k8s-gerrit / helm-charts / gerrit-operator / templates / rbac.yaml
blob: fbd2ae7486ed10fcd1e67b2f87df29d2ff7736df [file] [log] [blame]
Giorgi Lekveishvili285ab622023-11-22 13:50:45 +0400[diff] [blame]1apiVersion: v1
2kind: ServiceAccount
3metadata:
4 name: gerrit-operator
5 namespace: {{ .Release.Namespace }}
6
7---
8apiVersion: rbac.authorization.k8s.io/v1
9kind: ClusterRoleBinding
10metadata:
11 name: gerrit-operator-admin
12subjects:
13- kind: ServiceAccount
14 name: gerrit-operator
15 namespace: {{ .Release.Namespace }}
16roleRef:
17 kind: ClusterRole
18 name: gerrit-operator
19 apiGroup: ""
20
21---
22apiVersion: rbac.authorization.k8s.io/v1
23kind: ClusterRole
24metadata:
25 name: gerrit-operator
26rules:
27- apiGroups:
28 - "batch"
29 resources:
30 - cronjobs
31 verbs:
32 - '*'
33- apiGroups:
34 - "apps"
35 resources:
36 - statefulsets
37 - deployments
38 verbs:
39 - '*'
40- apiGroups:
41 - ""
42 resources:
43 - configmaps
44 - persistentvolumeclaims
45 - secrets
46 - services
47 verbs:
48 - '*'
49- apiGroups:
50 - "storage.k8s.io"
51 resources:
52 - storageclasses
53 verbs:
54 - 'get'
55 - 'list'
56- apiGroups:
57 - "apiextensions.k8s.io"
58 resources:
59 - customresourcedefinitions
60 verbs:
61 - '*'
62- apiGroups:
63 - "networking.k8s.io"
64 resources:
65 - ingresses
66 verbs:
67 - '*'
68- apiGroups:
69 - "gerritoperator.google.com"
70 resources:
71 - '*'
72 verbs:
73 - '*'
74- apiGroups:
75 - "networking.istio.io"
76 resources:
77 - "gateways"
78 - "virtualservices"
79 - "destinationrules"
80 verbs:
81 - '*'
82- apiGroups:
83 - "admissionregistration.k8s.io"
84 resources:
85 - 'validatingwebhookconfigurations'
86 verbs:
87 - '*'