...

Text file src/github.com/linkerd/linkerd2/test/integration/multicluster/testdata/allow.golden

Documentation: github.com/linkerd/linkerd2/test/integration/multicluster/testdata

     1kind: Namespace
     2apiVersion: v1
     3metadata:
     4  name: linkerd-multicluster
     5  labels:
     6    linkerd.io/extension: multicluster
     7    pod-security.kubernetes.io/enforce: privileged
     8---
     9apiVersion: rbac.authorization.k8s.io/v1
    10kind: ClusterRole
    11metadata:
    12  name: {{ .AccountName }}
    13  labels:
    14    linkerd.io/extension: multicluster
    15  annotations:
    16    linkerd.io/created-by: linkerd/cli {{ .Version }}
    17rules:
    18- apiGroups: ["apps"]
    19  resources: ["replicasets"]
    20  verbs: ["list", "get", "watch"]
    21- apiGroups: ["batch"]
    22  resources: ["jobs"]
    23  verbs: ["list", "get", "watch"]
    24- apiGroups: [""]
    25  resources: ["pods", "endpoints", "services"]
    26  verbs: ["list", "get", "watch"]
    27- apiGroups: ["discovery.k8s.io"]
    28  resources: ["endpointslices"]
    29  verbs: ["list", "get", "watch"]
    30- apiGroups: ["policy.linkerd.io"]
    31  resources: ["servers"]
    32  verbs: ["list", "get", "watch"]
    33- apiGroups: [""]
    34  resources: ["configmaps"]
    35  verbs: ["get"]
    36  resourceNames: ["linkerd-config"]
    37- apiGroups: [""]
    38  resources: ["events"]
    39  verbs: ["create", "patch"]
    40---
    41apiVersion: v1
    42kind: ServiceAccount
    43metadata:
    44  name: {{ .AccountName }}
    45  namespace: linkerd-multicluster
    46  labels:
    47    linkerd.io/extension: multicluster
    48  annotations:
    49    linkerd.io/created-by: linkerd/cli {{ .Version }}
    50---
    51apiVersion: v1
    52kind: Secret
    53metadata:
    54  name: {{ .AccountName }}-token
    55  namespace: linkerd-multicluster
    56  labels:
    57    linkerd.io/extension: multicluster
    58  annotations:
    59    kubernetes.io/service-account.name: {{ .AccountName }}
    60    linkerd.io/created-by: linkerd/cli {{ .Version }}
    61type: kubernetes.io/service-account-token
    62---
    63apiVersion: rbac.authorization.k8s.io/v1
    64kind: ClusterRoleBinding
    65metadata:
    66  name: {{ .AccountName }}
    67  labels:
    68    linkerd.io/extension: multicluster
    69  annotations:
    70    linkerd.io/created-by: linkerd/cli {{ .Version }}
    71roleRef:
    72  apiGroup: rbac.authorization.k8s.io
    73  kind: ClusterRole
    74  name: {{ .AccountName }}
    75subjects:
    76  - kind: ServiceAccount
    77    name: {{ .AccountName }}
    78    namespace: linkerd-multicluster
    79---

View as plain text