added namespace specific rbac
This commit is contained in:
23
3-argo-metal-rbac.yaml
Normal file
23
3-argo-metal-rbac.yaml
Normal file
@@ -0,0 +1,23 @@
|
|||||||
|
apiVersion: rbac.authorization.k8s.io/v1
|
||||||
|
kind: Role
|
||||||
|
metadata:
|
||||||
|
name: argocd-metallb-crs
|
||||||
|
namespace: metallb-system
|
||||||
|
rules:
|
||||||
|
- apiGroups: ["metallb.io"]
|
||||||
|
resources: ["ipaddresspools", "l2advertisements"]
|
||||||
|
verbs: ["get", "list", "watch", "create", "update", "patch", "delete"]
|
||||||
|
---
|
||||||
|
apiVersion: rbac.authorization.k8s.io/v1
|
||||||
|
kind: RoleBinding
|
||||||
|
metadata:
|
||||||
|
name: argocd-metallb-crs
|
||||||
|
namespace: metallb-system
|
||||||
|
subjects:
|
||||||
|
- kind: ServiceAccount
|
||||||
|
name: openshift-gitops-argocd-application-controller
|
||||||
|
namespace: openshift-gitops
|
||||||
|
roleRef:
|
||||||
|
apiGroup: rbac.authorization.k8s.io
|
||||||
|
kind: Role
|
||||||
|
name: argocd-metallb-crs
|
||||||
Reference in New Issue
Block a user