Text file src/k8s.io/kubernetes/test/e2e/testing-manifests/storage-csi/any-volume-datasource/volume-data-source-validator/rbac-data-source-validator.yaml

Documentation: k8s.io/kubernetes/test/e2e/testing-manifests/storage-csi/any-volume-datasource/volume-data-source-validator

     1apiVersion: v1
     2kind: ServiceAccount
     3metadata:
     4  name: volume-data-source-validator
     5  namespace: kube-system
     6
     7---
     8apiVersion: rbac.authorization.k8s.io/v1
     9kind: ClusterRole
    10metadata:
    11  name: volume-data-source-validator
    12rules:
    13  - apiGroups: [populator.storage.k8s.io]
    14    resources: [volumepopulators]
    15    verbs: [get, list, watch]
    16  - apiGroups: [""]
    17    resources: [persistentvolumeclaims]
    18    verbs: [get, list, watch]
    19  - apiGroups: [""]
    20    resources: [events]
    21    verbs: [list, watch, create, update, patch]
    22
    23---
    24apiVersion: rbac.authorization.k8s.io/v1
    25kind: ClusterRoleBinding
    26metadata:
    27  name: volume-data-source-validator
    28  labels:
    29    addonmanager.kubernetes.io/mode: Reconcile
    30subjects:
    31  - kind: ServiceAccount
    32    name: volume-data-source-validator
    33    namespace: kube-system
    34roleRef:
    35  kind: ClusterRole
    36  name: volume-data-source-validator
    37  apiGroup: rbac.authorization.k8s.io

View as plain text