This repository was archived by the owner on Mar 3, 2023. It is now read-only.
File tree 1 file changed +36
-5
lines changed
deploy/kubernetes/helm/templates
1 file changed +36
-5
lines changed Original file line number Diff line number Diff line change @@ -217,21 +217,52 @@ metadata:
217217 k8s-app : {{ .Release.Name }}-apiserver
218218
219219---
220- apiVersion : rbac.authorization.k8s.io/v1beta1
221- kind : ClusterRoleBinding
220+ apiVersion : rbac.authorization.k8s.io/v1
221+ kind : RoleBinding
222222metadata :
223223 name : {{ .Release.Name }}-apiserver
224224 labels :
225225 app : {{ .Release.Name }}-apiserver
226226roleRef :
227227 apiGroup : rbac.authorization.k8s.io
228- kind : ClusterRole
229- name : cluster-admin
230- subjects :
228+ kind : Role
229+ name : {{ .Release.Name }}-apiserver
230+ subjects :
231231- kind : ServiceAccount
232232 name : {{ .Release.Name }}-apiserver
233233 namespace : {{ .Release.Namespace }}
234234
235+ ---
236+ apiVersion : rbac.authorization.k8s.io/v1
237+ kind : Role
238+ metadata :
239+ name : {{ .Release.Name }}-apiserver
240+ rules :
241+ - apiGroups :
242+ - apps
243+ resources :
244+ - statefulsets
245+ verbs :
246+ - create
247+ - delete
248+ - get
249+ - list
250+ - patch
251+ - update
252+ - watch
253+ - apiGroups :
254+ - " "
255+ resources :
256+ - services
257+ verbs :
258+ - create
259+ - delete
260+ - get
261+ - list
262+ - patch
263+ - update
264+ - watch
265+
235266---
236267apiVersion : v1
237268kind : Service
You can’t perform that action at this time.
0 commit comments