lnmch/kops-arm64
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Add RBAC configuration (#135)

Browse Source 
* RBAC resources manifests

* Add service account reference

* Fix apiGroups
This commit is contained in:
Rafael Carício
2017-04-13 23:17:25 +02:00
committed by Henning Jacobs
parent 1181f36c0c
commit b1150b797f
2 changed files with 34 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

33
deploy/auth.yaml Normal file
View File

@@ -0,0 +1,33 @@
---
apiVersion: v1
kind: ServiceAccount
metadata:
name: kube-ops-view
---
kind: ClusterRole
apiVersion: rbac.authorization.k8s.io/v1beta1
metadata:
name: kube-ops-view
rules:
- apiGroups: [""]
resources: ["nodes", "pods"]
verbs:
- list
- apiGroups: [""]
resources: ["services/proxy"]
resourceNames: ["heapster"]
verbs:
- get
---
kind: ClusterRoleBinding
apiVersion: rbac.authorization.k8s.io/v1beta1
metadata:
name: kube-ops-view
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: ClusterRole
name: kube-ops-view
subjects:
- kind: ServiceAccount
name: kube-ops-view
namespace: default

1
deploy/deployment.yaml
View File

@@ -16,6 +16,7 @@ spec:
application: kube-ops-view application: kube-ops-view
version: v0.0.1 version: v0.0.1
spec: spec:
serviceAccount: kube-ops-view
containers: containers:
- name: service - name: service
image: hjacobs/kube-ops-view:latest image: hjacobs/kube-ops-view:latest