1apiVersion: rbac.authorization.k8s.io/v1
2kind: ClusterRole
3metadata:
4 creationTimestamp: null
5 labels:
6 rbac.authorization.k8s.io/aggregate-to-admin: "true"
7 rbac.authorization.k8s.io/aggregate-to-edit: "true"
8 name: admin
9rules:
10- apiGroups:
11 - accesscontextmanager.cnrm.cloud.google.com
12 resources:
13 - '*'
14 verbs:
15 - get
16 - list
17 - watch
18 - create
19 - update
20 - patch
21 - delete
22- apiGroups:
23 - alloydb.cnrm.cloud.google.com
24 resources:
25 - '*'
26 verbs:
27 - get
28 - list
29 - watch
30 - create
31 - update
32 - patch
33 - delete
34- apiGroups:
35 - apigateway.cnrm.cloud.google.com
36 resources:
37 - '*'
38 verbs:
39 - get
40 - list
41 - watch
42 - create
43 - update
44 - patch
45 - delete
46- apiGroups:
47 - apigee.cnrm.cloud.google.com
48 resources:
49 - '*'
50 verbs:
51 - get
52 - list
53 - watch
54 - create
55 - update
56 - patch
57 - delete
58- apiGroups:
59 - appengine.cnrm.cloud.google.com
60 resources:
61 - '*'
62 verbs:
63 - get
64 - list
65 - watch
66 - create
67 - update
68 - patch
69 - delete
70- apiGroups:
71 - artifactregistry.cnrm.cloud.google.com
72 resources:
73 - '*'
74 verbs:
75 - get
76 - list
77 - watch
78 - create
79 - update
80 - patch
81 - delete
82- apiGroups:
83 - beyondcorp.cnrm.cloud.google.com
84 resources:
85 - '*'
86 verbs:
87 - get
88 - list
89 - watch
90 - create
91 - update
92 - patch
93 - delete
94- apiGroups:
95 - bigquery.cnrm.cloud.google.com
96 resources:
97 - '*'
98 verbs:
99 - get
100 - list
101 - watch
102 - create
103 - update
104 - patch
105 - delete
106- apiGroups:
107 - bigqueryanalyticshub.cnrm.cloud.google.com
108 resources:
109 - '*'
110 verbs:
111 - get
112 - list
113 - watch
114 - create
115 - update
116 - patch
117 - delete
118- apiGroups:
119 - bigqueryconnection.cnrm.cloud.google.com
120 resources:
121 - '*'
122 verbs:
123 - get
124 - list
125 - watch
126 - create
127 - update
128 - patch
129 - delete
130- apiGroups:
131 - bigquerydatapolicy.cnrm.cloud.google.com
132 resources:
133 - '*'
134 verbs:
135 - get
136 - list
137 - watch
138 - create
139 - update
140 - patch
141 - delete
142- apiGroups:
143 - bigquerydatatransfer.cnrm.cloud.google.com
144 resources:
145 - '*'
146 verbs:
147 - get
148 - list
149 - watch
150 - create
151 - update
152 - patch
153 - delete
154- apiGroups:
155 - bigqueryreservation.cnrm.cloud.google.com
156 resources:
157 - '*'
158 verbs:
159 - get
160 - list
161 - watch
162 - create
163 - update
164 - patch
165 - delete
166- apiGroups:
167 - bigtable.cnrm.cloud.google.com
168 resources:
169 - '*'
170 verbs:
171 - get
172 - list
173 - watch
174 - create
175 - update
176 - patch
177 - delete
178- apiGroups:
179 - billingbudgets.cnrm.cloud.google.com
180 resources:
181 - '*'
182 verbs:
183 - get
184 - list
185 - watch
186 - create
187 - update
188 - patch
189 - delete
190- apiGroups:
191 - binaryauthorization.cnrm.cloud.google.com
192 resources:
193 - '*'
194 verbs:
195 - get
196 - list
197 - watch
198 - create
199 - update
200 - patch
201 - delete
202- apiGroups:
203 - certificatemanager.cnrm.cloud.google.com
204 resources:
205 - '*'
206 verbs:
207 - get
208 - list
209 - watch
210 - create
211 - update
212 - patch
213 - delete
214- apiGroups:
215 - cloudasset.cnrm.cloud.google.com
216 resources:
217 - '*'
218 verbs:
219 - get
220 - list
221 - watch
222 - create
223 - update
224 - patch
225 - delete
226- apiGroups:
227 - cloudbuild.cnrm.cloud.google.com
228 resources:
229 - '*'
230 verbs:
231 - get
232 - list
233 - watch
234 - create
235 - update
236 - patch
237 - delete
238- apiGroups:
239 - cloudfunctions.cnrm.cloud.google.com
240 resources:
241 - '*'
242 verbs:
243 - get
244 - list
245 - watch
246 - create
247 - update
248 - patch
249 - delete
250- apiGroups:
251 - cloudfunctions2.cnrm.cloud.google.com
252 resources:
253 - '*'
254 verbs:
255 - get
256 - list
257 - watch
258 - create
259 - update
260 - patch
261 - delete
262- apiGroups:
263 - cloudidentity.cnrm.cloud.google.com
264 resources:
265 - '*'
266 verbs:
267 - get
268 - list
269 - watch
270 - create
271 - update
272 - patch
273 - delete
274- apiGroups:
275 - cloudids.cnrm.cloud.google.com
276 resources:
277 - '*'
278 verbs:
279 - get
280 - list
281 - watch
282 - create
283 - update
284 - patch
285 - delete
286- apiGroups:
287 - cloudiot.cnrm.cloud.google.com
288 resources:
289 - '*'
290 verbs:
291 - get
292 - list
293 - watch
294 - create
295 - update
296 - patch
297 - delete
298- apiGroups:
299 - cloudscheduler.cnrm.cloud.google.com
300 resources:
301 - '*'
302 verbs:
303 - get
304 - list
305 - watch
306 - create
307 - update
308 - patch
309 - delete
310- apiGroups:
311 - cloudtasks.cnrm.cloud.google.com
312 resources:
313 - '*'
314 verbs:
315 - get
316 - list
317 - watch
318 - create
319 - update
320 - patch
321 - delete
322- apiGroups:
323 - compute.cnrm.cloud.google.com
324 resources:
325 - '*'
326 verbs:
327 - get
328 - list
329 - watch
330 - create
331 - update
332 - patch
333 - delete
334- apiGroups:
335 - configcontroller.cnrm.cloud.google.com
336 resources:
337 - '*'
338 verbs:
339 - get
340 - list
341 - watch
342 - create
343 - update
344 - patch
345 - delete
346- apiGroups:
347 - container.cnrm.cloud.google.com
348 resources:
349 - '*'
350 verbs:
351 - get
352 - list
353 - watch
354 - create
355 - update
356 - patch
357 - delete
358- apiGroups:
359 - containeranalysis.cnrm.cloud.google.com
360 resources:
361 - '*'
362 verbs:
363 - get
364 - list
365 - watch
366 - create
367 - update
368 - patch
369 - delete
370- apiGroups:
371 - datacatalog.cnrm.cloud.google.com
372 resources:
373 - '*'
374 verbs:
375 - get
376 - list
377 - watch
378 - create
379 - update
380 - patch
381 - delete
382- apiGroups:
383 - dataflow.cnrm.cloud.google.com
384 resources:
385 - '*'
386 verbs:
387 - get
388 - list
389 - watch
390 - create
391 - update
392 - patch
393 - delete
394- apiGroups:
395 - dataform.cnrm.cloud.google.com
396 resources:
397 - '*'
398 verbs:
399 - get
400 - list
401 - watch
402 - create
403 - update
404 - patch
405 - delete
406- apiGroups:
407 - datafusion.cnrm.cloud.google.com
408 resources:
409 - '*'
410 verbs:
411 - get
412 - list
413 - watch
414 - create
415 - update
416 - patch
417 - delete
418- apiGroups:
419 - dataproc.cnrm.cloud.google.com
420 resources:
421 - '*'
422 verbs:
423 - get
424 - list
425 - watch
426 - create
427 - update
428 - patch
429 - delete
430- apiGroups:
431 - datastore.cnrm.cloud.google.com
432 resources:
433 - '*'
434 verbs:
435 - get
436 - list
437 - watch
438 - create
439 - update
440 - patch
441 - delete
442- apiGroups:
443 - datastream.cnrm.cloud.google.com
444 resources:
445 - '*'
446 verbs:
447 - get
448 - list
449 - watch
450 - create
451 - update
452 - patch
453 - delete
454- apiGroups:
455 - deploymentmanager.cnrm.cloud.google.com
456 resources:
457 - '*'
458 verbs:
459 - get
460 - list
461 - watch
462 - create
463 - update
464 - patch
465 - delete
466- apiGroups:
467 - dialogflow.cnrm.cloud.google.com
468 resources:
469 - '*'
470 verbs:
471 - get
472 - list
473 - watch
474 - create
475 - update
476 - patch
477 - delete
478- apiGroups:
479 - dialogflowcx.cnrm.cloud.google.com
480 resources:
481 - '*'
482 verbs:
483 - get
484 - list
485 - watch
486 - create
487 - update
488 - patch
489 - delete
490- apiGroups:
491 - dlp.cnrm.cloud.google.com
492 resources:
493 - '*'
494 verbs:
495 - get
496 - list
497 - watch
498 - create
499 - update
500 - patch
501 - delete
502- apiGroups:
503 - dns.cnrm.cloud.google.com
504 resources:
505 - '*'
506 verbs:
507 - get
508 - list
509 - watch
510 - create
511 - update
512 - patch
513 - delete
514- apiGroups:
515 - documentai.cnrm.cloud.google.com
516 resources:
517 - '*'
518 verbs:
519 - get
520 - list
521 - watch
522 - create
523 - update
524 - patch
525 - delete
526- apiGroups:
527 - essentialcontacts.cnrm.cloud.google.com
528 resources:
529 - '*'
530 verbs:
531 - get
532 - list
533 - watch
534 - create
535 - update
536 - patch
537 - delete
538- apiGroups:
539 - eventarc.cnrm.cloud.google.com
540 resources:
541 - '*'
542 verbs:
543 - get
544 - list
545 - watch
546 - create
547 - update
548 - patch
549 - delete
550- apiGroups:
551 - filestore.cnrm.cloud.google.com
552 resources:
553 - '*'
554 verbs:
555 - get
556 - list
557 - watch
558 - create
559 - update
560 - patch
561 - delete
562- apiGroups:
563 - firebase.cnrm.cloud.google.com
564 resources:
565 - '*'
566 verbs:
567 - get
568 - list
569 - watch
570 - create
571 - update
572 - patch
573 - delete
574- apiGroups:
575 - firebasedatabase.cnrm.cloud.google.com
576 resources:
577 - '*'
578 verbs:
579 - get
580 - list
581 - watch
582 - create
583 - update
584 - patch
585 - delete
586- apiGroups:
587 - firebasehosting.cnrm.cloud.google.com
588 resources:
589 - '*'
590 verbs:
591 - get
592 - list
593 - watch
594 - create
595 - update
596 - patch
597 - delete
598- apiGroups:
599 - firebasestorage.cnrm.cloud.google.com
600 resources:
601 - '*'
602 verbs:
603 - get
604 - list
605 - watch
606 - create
607 - update
608 - patch
609 - delete
610- apiGroups:
611 - firestore.cnrm.cloud.google.com
612 resources:
613 - '*'
614 verbs:
615 - get
616 - list
617 - watch
618 - create
619 - update
620 - patch
621 - delete
622- apiGroups:
623 - gkebackup.cnrm.cloud.google.com
624 resources:
625 - '*'
626 verbs:
627 - get
628 - list
629 - watch
630 - create
631 - update
632 - patch
633 - delete
634- apiGroups:
635 - gkehub.cnrm.cloud.google.com
636 resources:
637 - '*'
638 verbs:
639 - get
640 - list
641 - watch
642 - create
643 - update
644 - patch
645 - delete
646- apiGroups:
647 - healthcare.cnrm.cloud.google.com
648 resources:
649 - '*'
650 verbs:
651 - get
652 - list
653 - watch
654 - create
655 - update
656 - patch
657 - delete
658- apiGroups:
659 - iam.cnrm.cloud.google.com
660 resources:
661 - '*'
662 verbs:
663 - get
664 - list
665 - watch
666 - create
667 - update
668 - patch
669 - delete
670- apiGroups:
671 - iap.cnrm.cloud.google.com
672 resources:
673 - '*'
674 verbs:
675 - get
676 - list
677 - watch
678 - create
679 - update
680 - patch
681 - delete
682- apiGroups:
683 - identityplatform.cnrm.cloud.google.com
684 resources:
685 - '*'
686 verbs:
687 - get
688 - list
689 - watch
690 - create
691 - update
692 - patch
693 - delete
694- apiGroups:
695 - kms.cnrm.cloud.google.com
696 resources:
697 - '*'
698 verbs:
699 - get
700 - list
701 - watch
702 - create
703 - update
704 - patch
705 - delete
706- apiGroups:
707 - logging.cnrm.cloud.google.com
708 resources:
709 - '*'
710 verbs:
711 - get
712 - list
713 - watch
714 - create
715 - update
716 - patch
717 - delete
718- apiGroups:
719 - memcache.cnrm.cloud.google.com
720 resources:
721 - '*'
722 verbs:
723 - get
724 - list
725 - watch
726 - create
727 - update
728 - patch
729 - delete
730- apiGroups:
731 - mlengine.cnrm.cloud.google.com
732 resources:
733 - '*'
734 verbs:
735 - get
736 - list
737 - watch
738 - create
739 - update
740 - patch
741 - delete
742- apiGroups:
743 - monitoring.cnrm.cloud.google.com
744 resources:
745 - '*'
746 verbs:
747 - get
748 - list
749 - watch
750 - create
751 - update
752 - patch
753 - delete
754- apiGroups:
755 - networkconnectivity.cnrm.cloud.google.com
756 resources:
757 - '*'
758 verbs:
759 - get
760 - list
761 - watch
762 - create
763 - update
764 - patch
765 - delete
766- apiGroups:
767 - networkmanagement.cnrm.cloud.google.com
768 resources:
769 - '*'
770 verbs:
771 - get
772 - list
773 - watch
774 - create
775 - update
776 - patch
777 - delete
778- apiGroups:
779 - networksecurity.cnrm.cloud.google.com
780 resources:
781 - '*'
782 verbs:
783 - get
784 - list
785 - watch
786 - create
787 - update
788 - patch
789 - delete
790- apiGroups:
791 - networkservices.cnrm.cloud.google.com
792 resources:
793 - '*'
794 verbs:
795 - get
796 - list
797 - watch
798 - create
799 - update
800 - patch
801 - delete
802- apiGroups:
803 - notebooks.cnrm.cloud.google.com
804 resources:
805 - '*'
806 verbs:
807 - get
808 - list
809 - watch
810 - create
811 - update
812 - patch
813 - delete
814- apiGroups:
815 - orgpolicy.cnrm.cloud.google.com
816 resources:
817 - '*'
818 verbs:
819 - get
820 - list
821 - watch
822 - create
823 - update
824 - patch
825 - delete
826- apiGroups:
827 - osconfig.cnrm.cloud.google.com
828 resources:
829 - '*'
830 verbs:
831 - get
832 - list
833 - watch
834 - create
835 - update
836 - patch
837 - delete
838- apiGroups:
839 - oslogin.cnrm.cloud.google.com
840 resources:
841 - '*'
842 verbs:
843 - get
844 - list
845 - watch
846 - create
847 - update
848 - patch
849 - delete
850- apiGroups:
851 - privateca.cnrm.cloud.google.com
852 resources:
853 - '*'
854 verbs:
855 - get
856 - list
857 - watch
858 - create
859 - update
860 - patch
861 - delete
862- apiGroups:
863 - pubsub.cnrm.cloud.google.com
864 resources:
865 - '*'
866 verbs:
867 - get
868 - list
869 - watch
870 - create
871 - update
872 - patch
873 - delete
874- apiGroups:
875 - pubsublite.cnrm.cloud.google.com
876 resources:
877 - '*'
878 verbs:
879 - get
880 - list
881 - watch
882 - create
883 - update
884 - patch
885 - delete
886- apiGroups:
887 - recaptchaenterprise.cnrm.cloud.google.com
888 resources:
889 - '*'
890 verbs:
891 - get
892 - list
893 - watch
894 - create
895 - update
896 - patch
897 - delete
898- apiGroups:
899 - redis.cnrm.cloud.google.com
900 resources:
901 - '*'
902 verbs:
903 - get
904 - list
905 - watch
906 - create
907 - update
908 - patch
909 - delete
910- apiGroups:
911 - resourcemanager.cnrm.cloud.google.com
912 resources:
913 - '*'
914 verbs:
915 - get
916 - list
917 - watch
918 - create
919 - update
920 - patch
921 - delete
922- apiGroups:
923 - run.cnrm.cloud.google.com
924 resources:
925 - '*'
926 verbs:
927 - get
928 - list
929 - watch
930 - create
931 - update
932 - patch
933 - delete
934- apiGroups:
935 - secretmanager.cnrm.cloud.google.com
936 resources:
937 - '*'
938 verbs:
939 - get
940 - list
941 - watch
942 - create
943 - update
944 - patch
945 - delete
946- apiGroups:
947 - securitycenter.cnrm.cloud.google.com
948 resources:
949 - '*'
950 verbs:
951 - get
952 - list
953 - watch
954 - create
955 - update
956 - patch
957 - delete
958- apiGroups:
959 - servicedirectory.cnrm.cloud.google.com
960 resources:
961 - '*'
962 verbs:
963 - get
964 - list
965 - watch
966 - create
967 - update
968 - patch
969 - delete
970- apiGroups:
971 - servicenetworking.cnrm.cloud.google.com
972 resources:
973 - '*'
974 verbs:
975 - get
976 - list
977 - watch
978 - create
979 - update
980 - patch
981 - delete
982- apiGroups:
983 - serviceusage.cnrm.cloud.google.com
984 resources:
985 - '*'
986 verbs:
987 - get
988 - list
989 - watch
990 - create
991 - update
992 - patch
993 - delete
994- apiGroups:
995 - sourcerepo.cnrm.cloud.google.com
996 resources:
997 - '*'
998 verbs:
999 - get
1000 - list
1001 - watch
1002 - create
1003 - update
1004 - patch
1005 - delete
1006- apiGroups:
1007 - spanner.cnrm.cloud.google.com
1008 resources:
1009 - '*'
1010 verbs:
1011 - get
1012 - list
1013 - watch
1014 - create
1015 - update
1016 - patch
1017 - delete
1018- apiGroups:
1019 - sql.cnrm.cloud.google.com
1020 resources:
1021 - '*'
1022 verbs:
1023 - get
1024 - list
1025 - watch
1026 - create
1027 - update
1028 - patch
1029 - delete
1030- apiGroups:
1031 - storage.cnrm.cloud.google.com
1032 resources:
1033 - '*'
1034 verbs:
1035 - get
1036 - list
1037 - watch
1038 - create
1039 - update
1040 - patch
1041 - delete
1042- apiGroups:
1043 - storagetransfer.cnrm.cloud.google.com
1044 resources:
1045 - '*'
1046 verbs:
1047 - get
1048 - list
1049 - watch
1050 - create
1051 - update
1052 - patch
1053 - delete
1054- apiGroups:
1055 - tags.cnrm.cloud.google.com
1056 resources:
1057 - '*'
1058 verbs:
1059 - get
1060 - list
1061 - watch
1062 - create
1063 - update
1064 - patch
1065 - delete
1066- apiGroups:
1067 - tpu.cnrm.cloud.google.com
1068 resources:
1069 - '*'
1070 verbs:
1071 - get
1072 - list
1073 - watch
1074 - create
1075 - update
1076 - patch
1077 - delete
1078- apiGroups:
1079 - vertexai.cnrm.cloud.google.com
1080 resources:
1081 - '*'
1082 verbs:
1083 - get
1084 - list
1085 - watch
1086 - create
1087 - update
1088 - patch
1089 - delete
1090- apiGroups:
1091 - vpcaccess.cnrm.cloud.google.com
1092 resources:
1093 - '*'
1094 verbs:
1095 - get
1096 - list
1097 - watch
1098 - create
1099 - update
1100 - patch
1101 - delete
1102- apiGroups:
1103 - workflows.cnrm.cloud.google.com
1104 resources:
1105 - '*'
1106 verbs:
1107 - get
1108 - list
1109 - watch
1110 - create
1111 - update
1112 - patch
1113 - delete
1114- apiGroups:
1115 - workstations.cnrm.cloud.google.com
1116 resources:
1117 - '*'
1118 verbs:
1119 - get
1120 - list
1121 - watch
1122 - create
1123 - update
1124 - patch
1125 - delete
View as plain text