Mirrors/flux2
1
0
Fork 0
mirror of synced 2026-05-30 19:50:49 +00:00
Code Issues Packages Projects Releases Wiki Activity
3,277 Commits 30 Branches 209 Tags
9c881826ff5cc0aa636e34eb6a8ff9e4525ccd22
Commit Graph

16 Commits

Author SHA1 Message Date
Calle Pettersson 539dfa0942 Add permissions required for flow control 
Signed-off-by: Calle Pettersson <carlpett@users.noreply.github.com>
 2024-03-25 13:03:08 +01:00
Stefan Prodan 2aa38baa35 Add ResourceQuota for critical pods 
Fixes insufficient quota error on GKE

Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2023-05-12 11:34:54 +03:00
Stefan Prodan 65055c273f rbac: Add view and edit aggregated cluster roles 
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2023-02-17 11:21:47 +02:00
Stefan Prodan 1ece35e4c5 Add leader election required permissions 
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2022-05-04 11:11:51 +03:00
Stefan Prodan 5dee903374 Grant service account read-only access to controllers 
For image automation to use a service account to authenticate to container registries, the controllers needs read-only access to service accounts.

Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2022-05-04 10:47:04 +03:00
Aurel Canciu 69dce73e51 Allow namespaces readonly crd-controller rbac 
Readonly access to namespaces is needed by the
image-reflector-controller to support the cross-namespace accessFrom
functionality introduced in image-reflector-controller#162.

Signed-off-by: Aurel Canciu <aurelcanciu@gmail.com>
 2021-10-13 19:35:31 +02:00
Stefan Prodan 8f8c7cccc6 Add SA namespace to RBAC 
Fix flux install when not all controllers have been selected

Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2021-01-26 16:16:34 +02:00
Stefan Prodan 1b581d6f51 Add dedicated service accounts per controller 
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2021-01-26 12:27:58 +02:00
Brian Atkinson a18f84c27b Add permissions for controller leader election. 
The v0.8.0 version of the controller-runtime uses both config maps and
leases to perform leader election. These permissions seem to be in the
individual controller repos, but not here. For example
https://github.com/fluxcd/kustomize-controller/blob/2d38de8779b68bde3366489a0b7657488c747fdb/config/rbac/leader_election_role.yaml#L33-L44

Signed-off-by: Brian Atkinson <brian@atkinson.mn>
 2021-01-25 10:15:57 -08:00
Hidde Beydals 1ff24d9285 Add PATCH rule to crd-controller role for events 
During high custom resource count / low interval tests, I was greated
with a `cannot patch resource "events"` message. This happened due to
event compaction, where it will perform a patch instead of a create.
By giving the role the permission to do so this should no longer pose
a problem.
 2020-09-10 20:57:59 +02:00
Hidde Beydals 54b11e7b25 Update components 
- source-controller to v0.0.7
- kustomize-controller to v0.0.7
- helm-controller to v0.0.1
- notification-controller to v0.0.6
 2020-07-31 10:24:29 +02:00
stefanprodan 02521b6964 Add helm-controller to installer 2020-07-13 18:44:54 +03:00
stefanprodan e594350307 Add notification controller to tk components 2020-07-02 12:52:55 +03:00
stefanprodan 47c249e3be manifests: fix leader election rbac 2020-05-03 13:05:35 +03:00
stefanprodan b9a8100dbb manifests: add cluster reconciler RBAC and SA 2020-05-03 11:33:28 +03:00
stefanprodan 42d2ed51cb Add install manifests 2020-04-24 18:16:31 +03:00