...

Text file src/edge-infra.dev/config/pallets/sds/wireguard/cluster-infra/wireguardctl/base/role.yaml

Documentation: edge-infra.dev/config/pallets/sds/wireguard/cluster-infra/wireguardctl/base 

     1apiVersion: v1
     2kind: ServiceAccount
     3metadata:
     4  name: wireguardctl
     5  namespace: vpn
     6---
     7apiVersion: rbac.authorization.k8s.io/v1
     8kind: ClusterRoleBinding
     9metadata:
    10  name: wireguardctl-rb
    11roleRef:
    12  name: wireguardctl
    13  kind: ClusterRole
    14  apiGroup: rbac.authorization.k8s.io
    15subjects:
    16- name: wireguardctl
    17  namespace: vpn
    18  kind: ServiceAccount
    19---
    20apiVersion: rbac.authorization.k8s.io/v1
    21kind: ClusterRole
    22metadata:
    23  name: wireguardctl
    24  labels:
    25    platform.edge.ncr.com/component: 'wireguardctl'
    26rules:
    27- resources:
    28  - secrets
    29  apiGroups:
    30  - ""
    31  verbs:
    32  - get
    33  - list
    34  - watch
    35  - patch
    36  - update
    37  - create
    38  - delete
    39- resources:
    40  - configmaps
    41  apiGroups:
    42  - ""
    43  verbs:
    44  - get
    45  - list
    46  - watch
    47- resources:
    48  - deployments
    49  apiGroups:
    50  - apps
    51  verbs:
    52  - get
    53  - list
    54  - watch
    55  - patch
    56  - update
    57  - create
    58- resources:
    59  - pods
    60  apiGroups:
    61  - ""
    62  verbs:
    63  - get
    64  - list
    65  - watch
    66  - delete
    67- resources:
    68  - pods/exec
    69  apiGroups:
    70  - ""
    71  verbs:
    72  - create
    73- resources:
    74  - clusters
    75  apiGroups:
    76  - edge.ncr.com
    77  verbs:
    78  - get
    79  - list
    80  - watch
    81- resources:
    82  - clusters/status
    83  apiGroups:
    84  - edge.ncr.com
    85  verbs:
    86  - get
    87  - list
    88  - watch
    89- resources:
    90  - customresourcedefinitions
    91  apiGroups:
    92  - apiextensions.k8s.io
    93  verbs:
    94  - get
    95  - list
    96  - watch
    97- resources:
    98  - vpnconfigs
    99  apiGroups:
   100  - remoteaccess.edge.ncr.com
   101  verbs:
   102  - get
   103  - list
   104  - watch
   105  - patch
   106  - update
   107- resources:
   108  - vpnconfigs/status
   109  apiGroups:
   110  - remoteaccess.edge.ncr.com
   111  verbs:
   112  - get
   113  - list
   114  - watch
   115  - patch
   116  - update
   117- resources:
   118  - syncedobjects
   119  apiGroups:
   120  - edge.ncr.com
   121  verbs:
   122  - get
   123  - list
   124  - watch
   125  - create
   126  - update
   127  - patch
   128  - delete
   129- resources:
   130  - services
   131  apiGroups:
   132  - ""
   133  verbs:
   134  - get
   135  - list
   136  - watch
   137- resources:
   138  - hosts
   139  apiGroups:
   140  - getambassador.io
   141  verbs:
   142  - get
   143  - list
   144  - watch
   145- resources:
   146  - mappings
   147  apiGroups:
   148  - getambassador.io
   149  verbs:
   150  - get
   151  - list
   152  - watch
   153  - create
   154  - update
   155  - patch
   156  - delete
   157- resources:
   158  - iampolicymembers
   159  apiGroups:
   160  - iam.cnrm.cloud.google.com
   161  verbs:
   162  - create
   163  - delete
   164  - get
   165  - list
   166  - patch
   167  - update
   168  - watch
   169- resources:
   170  - iampolicymembers/status
   171  apiGroups:
   172  - iam.cnrm.cloud.google.com
   173  verbs:
   174  - get
   175  - watch

View as plain text