manifests: fix leader election rbac
This commit is contained in:
stefanprodan
4
.github/workflows/e2e.yaml
vendored
4
.github/workflows/e2e.yaml
vendored
@@ -48,7 +48,7 @@ jobs:
|
|||||||
./bin/tk uninstall --namespace=test --crds --silent
|
./bin/tk uninstall --namespace=test --crds --silent
|
||||||
- name: tk install --manifests
|
- name: tk install --manifests
|
||||||
run: |
|
run: |
|
||||||
./bin/tk install --manifests ./manifests/install/
|
./bin/tk install --manifests ./manifests/install/ --version=""
|
||||||
- name: tk create source git
|
- name: tk create source git
|
||||||
run: |
|
run: |
|
||||||
./bin/tk create source git podinfo \
|
./bin/tk create source git podinfo \
|
||||||
@@ -99,3 +99,5 @@ jobs:
|
|||||||
kubectl version --client --short
|
kubectl version --client --short
|
||||||
kustomize version --short
|
kustomize version --short
|
||||||
kubectl -n gitops-system get all
|
kubectl -n gitops-system get all
|
||||||
|
kubectl -n gitops-system logs deploy/source-controller
|
||||||
|
kubectl -n gitops-system logs deploy/kustomize-controller
|
||||||
|
|||||||
@@ -3,6 +3,3 @@ kind: Kustomization
|
|||||||
resources:
|
resources:
|
||||||
- github.com/fluxcd/kustomize-controller/config//crd?ref=v0.0.1-alpha.6
|
- github.com/fluxcd/kustomize-controller/config//crd?ref=v0.0.1-alpha.6
|
||||||
- github.com/fluxcd/kustomize-controller/config//manager?ref=v0.0.1-alpha.6
|
- github.com/fluxcd/kustomize-controller/config//manager?ref=v0.0.1-alpha.6
|
||||||
- cluster_role.yaml
|
|
||||||
patchesStrategicMerge:
|
|
||||||
- patch.yaml
|
|
||||||
|
|||||||
@@ -1,8 +0,0 @@
|
|||||||
apiVersion: apps/v1
|
|
||||||
kind: Deployment
|
|
||||||
metadata:
|
|
||||||
name: kustomize-controller
|
|
||||||
spec:
|
|
||||||
template:
|
|
||||||
spec:
|
|
||||||
serviceAccountName: cluster-reconciler
|
|
||||||
@@ -1,9 +1,3 @@
|
|||||||
apiVersion: v1
|
|
||||||
kind: ServiceAccount
|
|
||||||
metadata:
|
|
||||||
name: cluster-reconciler
|
|
||||||
namespace: system
|
|
||||||
---
|
|
||||||
apiVersion: rbac.authorization.k8s.io/v1
|
apiVersion: rbac.authorization.k8s.io/v1
|
||||||
kind: ClusterRoleBinding
|
kind: ClusterRoleBinding
|
||||||
metadata:
|
metadata:
|
||||||
@@ -14,5 +8,5 @@ roleRef:
|
|||||||
name: cluster-admin
|
name: cluster-admin
|
||||||
subjects:
|
subjects:
|
||||||
- kind: ServiceAccount
|
- kind: ServiceAccount
|
||||||
name: cluster-reconciler
|
name: default
|
||||||
namespace: system
|
namespace: system
|
||||||
@@ -2,3 +2,4 @@ apiVersion: kustomize.config.k8s.io/v1beta1
|
|||||||
kind: Kustomization
|
kind: Kustomization
|
||||||
resources:
|
resources:
|
||||||
- role.yaml
|
- role.yaml
|
||||||
|
- cluster-role.yaml
|
||||||
|
|||||||
@@ -9,6 +9,18 @@ rules:
|
|||||||
- apiGroups: ['kustomize.fluxcd.io']
|
- apiGroups: ['kustomize.fluxcd.io']
|
||||||
resources: ['*']
|
resources: ['*']
|
||||||
verbs: ['*']
|
verbs: ['*']
|
||||||
|
- apiGroups:
|
||||||
|
- ""
|
||||||
|
resources:
|
||||||
|
- configmaps
|
||||||
|
- configmaps/status
|
||||||
|
verbs: ['*']
|
||||||
|
- apiGroups:
|
||||||
|
- ""
|
||||||
|
resources:
|
||||||
|
- events
|
||||||
|
verbs:
|
||||||
|
- create
|
||||||
---
|
---
|
||||||
apiVersion: rbac.authorization.k8s.io/v1
|
apiVersion: rbac.authorization.k8s.io/v1
|
||||||
kind: RoleBinding
|
kind: RoleBinding
|
||||||
|
|||||||
Reference in New Issue
Block a user