Mirrors
/
flux2
mirror of https://github.com/fluxcd/flux2.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Grant service account read-only access to controllers

Browse Source 
For image automation to use a service account to authenticate to container registries, the controllers needs read-only access to service accounts.

Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
pull/2701/head
Stefan Prodan 3 years ago
parent 4dd20af7e0
commit 5dee903374
No known key found for this signature in database
GPG Key ID: 3299AEB0E4085BAF
1 changed files with 2 additions and 13 deletions
Show Stats Download Patch File Download Diff File

15
manifests/rbac/controller.yaml
Unescape Escape View File

@ -23,6 +23,8 @@ rules:
resources: resources:
- namespaces - namespaces
- secrets - secrets
- configmaps
- serviceaccounts
verbs: verbs:
- get - get
- list - list
@ -34,19 +36,6 @@ rules:
verbs: verbs:
- create - create
- patch - patch
- apiGroups:
- ""
resources:
- configmaps
- configmaps/status
verbs:
- get
- list
- watch
- create
- update
- patch
- delete
- apiGroups: - apiGroups:
- "coordination.k8s.io" - "coordination.k8s.io"
resources: resources:

Write Preview
Loading…
Cancel
Save