Blame - charts/cert-manager-webhook-pcloud/templates/role.yaml - pcloud

blob: 9c18ba11692e5c8ee0c0d4a50de34dd1e9d69b41 [file] [log] [blame]

Giorgi Lekveishvili	c9d88a0	2023-12-07 13:50:37 +0400	[diff] [blame]	1	apiVersion: rbac.authorization.k8s.io/v1
				2	kind: ClusterRole
				3	metadata:
Giorgi Lekveishvili	5c2c0b9	2023-12-07 17:35:40 +0400	[diff] [blame]	4	name: cert-manager-{{ .Values.resolverName }}
Giorgi Lekveishvili	c9d88a0	2023-12-07 13:50:37 +0400	[diff] [blame]	5	rules:
				6	- apiGroups:
Giorgi Lekveishvili	5c2c0b9	2023-12-07 17:35:40 +0400	[diff] [blame]	7	- {{ .Values.apiGroupName }}
Giorgi Lekveishvili	c9d88a0	2023-12-07 13:50:37 +0400	[diff] [blame]	8	resources:
Giorgi Lekveishvili	5c2c0b9	2023-12-07 17:35:40 +0400	[diff] [blame]	9	- {{ .Values.resolverName }}
Giorgi Lekveishvili	c9d88a0	2023-12-07 13:50:37 +0400	[diff] [blame]	10	verbs:
				11	- "*" # TODO(giolekva): limit
				12	---
				13	apiVersion: rbac.authorization.k8s.io/v1
				14	kind: ClusterRoleBinding
				15	metadata:
				16	name: cert-manager-pcloud-binding
				17	roleRef:
				18	apiGroup: rbac.authorization.k8s.io
				19	kind: ClusterRole
Giorgi Lekveishvili	5c2c0b9	2023-12-07 17:35:40 +0400	[diff] [blame]	20	name: cert-manager-{{ .Values.resolverName }}
Giorgi Lekveishvili	c9d88a0	2023-12-07 13:50:37 +0400	[diff] [blame]	21	subjects:
				22	- kind: ServiceAccount
				23	name: {{ .Values.certManager.name }}
				24	namespace: {{ .Values.certManager.namespace }}