Skip to content

Commit eb501ff

Browse files
tantonatantona
authored
Merge pull request #56 from tantona/at/add-rbac-resources
At/add rbac resources
2 parents d40ec27 + 3097de7 commit eb501ff

File tree

78 files changed

+3301
-140
lines changed

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

78 files changed

+3301
-140
lines changed

config/crds/components_v1alpha1_clusterrole.yaml

Lines changed: 57 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,57 @@
1+
apiVersion: apiextensions.k8s.io/v1beta1
2+
kind: CustomResourceDefinition
3+
metadata:
4+
creationTimestamp: null
5+
labels:
6+
controller-tools.k8s.io: "1.0"
7+
name: clusterroles.components.eks.amazonaws.com
8+
spec:
9+
group: components.eks.amazonaws.com
10+
names:
11+
kind: ClusterRole
12+
plural: clusterroles
13+
scope: Namespaced
14+
validation:
15+
openAPIV3Schema:
16+
properties:
17+
apiVersion:
18+
type: string
19+
kind:
20+
type: string
21+
metadata:
22+
type: object
23+
spec:
24+
properties:
25+
aggregationRule:
26+
type: object
27+
apiVersion:
28+
type: string
29+
cluster:
30+
type: string
31+
kind:
32+
type: string
33+
metadata:
34+
type: object
35+
name:
36+
type: string
37+
rules:
38+
items:
39+
type: object
40+
type: array
41+
required:
42+
- rules
43+
- cluster
44+
- name
45+
type: object
46+
status:
47+
properties:
48+
status:
49+
type: string
50+
type: object
51+
version: v1alpha1
52+
status:
53+
acceptedNames:
54+
kind: ""
55+
plural: ""
56+
conditions: []
57+
storedVersions: []

config/crds/components_v1alpha1_clusterrolebinding.yaml

Lines changed: 59 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,59 @@
1+
apiVersion: apiextensions.k8s.io/v1beta1
2+
kind: CustomResourceDefinition
3+
metadata:
4+
creationTimestamp: null
5+
labels:
6+
controller-tools.k8s.io: "1.0"
7+
name: clusterrolebindings.components.eks.amazonaws.com
8+
spec:
9+
group: components.eks.amazonaws.com
10+
names:
11+
kind: ClusterRoleBinding
12+
plural: clusterrolebindings
13+
scope: Namespaced
14+
validation:
15+
openAPIV3Schema:
16+
properties:
17+
apiVersion:
18+
type: string
19+
kind:
20+
type: string
21+
metadata:
22+
type: object
23+
spec:
24+
properties:
25+
apiVersion:
26+
type: string
27+
cluster:
28+
type: string
29+
kind:
30+
type: string
31+
metadata:
32+
type: object
33+
name:
34+
type: string
35+
namespace:
36+
type: string
37+
roleRef:
38+
type: object
39+
subjects:
40+
items:
41+
type: object
42+
type: array
43+
required:
44+
- roleRef
45+
- cluster
46+
- name
47+
type: object
48+
status:
49+
properties:
50+
status:
51+
type: string
52+
type: object
53+
version: v1alpha1
54+
status:
55+
acceptedNames:
56+
kind: ""
57+
plural: ""
58+
conditions: []
59+
storedVersions: []

config/crds/components_v1alpha1_serviceaccount.yaml

Lines changed: 63 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,63 @@
1+
apiVersion: apiextensions.k8s.io/v1beta1
2+
kind: CustomResourceDefinition
3+
metadata:
4+
creationTimestamp: null
5+
labels:
6+
controller-tools.k8s.io: "1.0"
7+
name: serviceaccounts.components.eks.amazonaws.com
8+
spec:
9+
group: components.eks.amazonaws.com
10+
names:
11+
kind: ServiceAccount
12+
plural: serviceaccounts
13+
scope: Namespaced
14+
validation:
15+
openAPIV3Schema:
16+
properties:
17+
apiVersion:
18+
type: string
19+
kind:
20+
type: string
21+
metadata:
22+
type: object
23+
spec:
24+
properties:
25+
apiVersion:
26+
type: string
27+
automountServiceAccountToken:
28+
type: boolean
29+
cluster:
30+
type: string
31+
imagePullSecrets:
32+
items:
33+
type: object
34+
type: array
35+
kind:
36+
type: string
37+
metadata:
38+
type: object
39+
name:
40+
type: string
41+
namespace:
42+
type: string
43+
secrets:
44+
items:
45+
type: object
46+
type: array
47+
required:
48+
- cluster
49+
- name
50+
- namespace
51+
type: object
52+
status:
53+
properties:
54+
status:
55+
type: string
56+
type: object
57+
version: v1alpha1
58+
status:
59+
acceptedNames:
60+
kind: ""
61+
plural: ""
62+
conditions: []
63+
storedVersions: []

config/rbac/rbac_role.yaml

Lines changed: 120 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -4,6 +4,86 @@ metadata:
44
creationTimestamp: null
55
name: manager-role
66
rules:
7+
- apiGroups:
8+
- apps
9+
resources:
10+
- deployments
11+
verbs:
12+
- get
13+
- list
14+
- watch
15+
- create
16+
- update
17+
- patch
18+
- delete
19+
- apiGroups:
20+
- apps
21+
resources:
22+
- deployments/status
23+
verbs:
24+
- get
25+
- update
26+
- patch
27+
- apiGroups:
28+
- components.eks.amazonaws.com
29+
resources:
30+
- clusterroles
31+
verbs:
32+
- get
33+
- list
34+
- watch
35+
- create
36+
- update
37+
- patch
38+
- delete
39+
- apiGroups:
40+
- components.eks.amazonaws.com
41+
resources:
42+
- clusterroles/status
43+
verbs:
44+
- get
45+
- update
46+
- patch
47+
- apiGroups:
48+
- apps
49+
resources:
50+
- deployments
51+
verbs:
52+
- get
53+
- list
54+
- watch
55+
- create
56+
- update
57+
- patch
58+
- delete
59+
- apiGroups:
60+
- apps
61+
resources:
62+
- deployments/status
63+
verbs:
64+
- get
65+
- update
66+
- patch
67+
- apiGroups:
68+
- components.eks.amazonaws.com
69+
resources:
70+
- clusterrolebindings
71+
verbs:
72+
- get
73+
- list
74+
- watch
75+
- create
76+
- update
77+
- patch
78+
- delete
79+
- apiGroups:
80+
- components.eks.amazonaws.com
81+
resources:
82+
- clusterrolebindings/status
83+
verbs:
84+
- get
85+
- update
86+
- patch
787
- apiGroups:
888
- components.eks.amazonaws.com
989
resources:
@@ -145,6 +225,46 @@ rules:
145225
- update
146226
- patch
147227
- delete
228+
- apiGroups:
229+
- apps
230+
resources:
231+
- deployments
232+
verbs:
233+
- get
234+
- list
235+
- watch
236+
- create
237+
- update
238+
- patch
239+
- delete
240+
- apiGroups:
241+
- apps
242+
resources:
243+
- deployments/status
244+
verbs:
245+
- get
246+
- update
247+
- patch
248+
- apiGroups:
249+
- components.eks.amazonaws.com
250+
resources:
251+
- serviceaccounts
252+
verbs:
253+
- get
254+
- list
255+
- watch
256+
- create
257+
- update
258+
- patch
259+
- delete
260+
- apiGroups:
261+
- components.eks.amazonaws.com
262+
resources:
263+
- serviceaccounts/status
264+
verbs:
265+
- get
266+
- update
267+
- patch
148268
- apiGroups:
149269
- admissionregistration.k8s.io
150270
resources:

config/samples/components_v1alpha1_clusterrole.yaml

Lines changed: 16 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,16 @@
1+
apiVersion: components.eks.amazonaws.com/v1alpha1
2+
kind: ClusterRole
3+
metadata:
4+
labels:
5+
controller-tools.k8s.io: "1.0"
6+
name: clusterrole-sample
7+
spec:
8+
cluster: foobar
9+
name: foobar-clusterrole
10+
rules:
11+
- apiGroups:
12+
- ""
13+
resources:
14+
- "*"
15+
verbs:
16+
- "*"

config/samples/components_v1alpha1_clusterrolebinding.yaml

Lines changed: 18 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,18 @@
1+
apiVersion: components.eks.amazonaws.com/v1alpha1
2+
kind: ClusterRoleBinding
3+
metadata:
4+
labels:
5+
controller-tools.k8s.io: "1.0"
6+
name: clusterrolebinding-sample
7+
spec:
8+
cluster: foobar
9+
name: foobar-clusterrolebinding
10+
subjects:
11+
- kind: ServiceAccount
12+
name: foobar-serviceaccount
13+
namespace: default
14+
roleRef:
15+
kind: ClusterRole
16+
name: foobar-clusterrole
17+
apiGroup: rbac.authorization.k8s.io
18+

config/samples/components_v1alpha1_serviceaccount.yaml

Lines changed: 11 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,11 @@
1+
apiVersion: components.eks.amazonaws.com/v1alpha1
2+
kind: ServiceAccount
3+
metadata:
4+
labels:
5+
controller-tools.k8s.io: "1.0"
6+
name: serviceaccount-sample
7+
spec:
8+
cluster: foobar
9+
name: foobar-serviceaccount
10+
namespace: default
11+

docs/CurrentComponenets.md

Lines changed: 0 additions & 14 deletions
This file was deleted.

0 commit comments

Comments
 (0)