Blame - charts/certificate-issuer/templates/gandi-webhook-secret-reader.yaml - pcloud

blob: 88cf40594668e872bf4ac8ec5ba5bb06e82633f4 [file] [log] [blame]

giolekva	01a6b79	2021-11-11 19:01:17 +0400	[diff] [blame]	1	apiVersion: rbac.authorization.k8s.io/v1
				2	kind: ClusterRole
				3	metadata:
giolekva	3085046	2021-12-01 16:23:50 +0400	[diff] [blame]	4	name: {{ .Release.Namespace }}-cert-manager-gandi-webhook-secret-reader # TODO(giolekva): make namespace part configurable
giolekva	01a6b79	2021-11-11 19:01:17 +0400	[diff] [blame]	5	namespace: {{ .Release.Namespace }}
				6	rules:
				7	- apiGroups:
				8	- ""
				9	resources:
				10	- secrets
				11	verbs:
				12	- get
				13	---
				14	apiVersion: rbac.authorization.k8s.io/v1
				15	kind: ClusterRoleBinding
				16	metadata:
giolekva	3085046	2021-12-01 16:23:50 +0400	[diff] [blame]	17	name: {{ .Release.Namespace }}-cert-manager-gandi-webhook-secret-reader
giolekva	01a6b79	2021-11-11 19:01:17 +0400	[diff] [blame]	18	namespace: {{ .Release.Namespace }}
				19	roleRef:
				20	apiGroup: rbac.authorization.k8s.io
				21	kind: ClusterRole
giolekva	3085046	2021-12-01 16:23:50 +0400	[diff] [blame]	22	name: {{ .Release.Namespace }}-cert-manager-gandi-webhook-secret-reader
giolekva	01a6b79	2021-11-11 19:01:17 +0400	[diff] [blame]	23	subjects:
				24	- kind: ServiceAccount
				25	name: {{ .Values.certManager.gandiWebhookSecretReader }}
				26	namespace: {{ .Values.certManager.namespace }}