mirror of https://github.com/k3s-io/k3s
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
80 lines
1.1 KiB
80 lines
1.1 KiB
apiVersion: rbac.authorization.k8s.io/v1 |
|
kind: ClusterRole |
|
metadata: |
|
name: cloud-controller-manager |
|
rules: |
|
- apiGroups: |
|
- coordination.k8s.io |
|
resources: |
|
- leases |
|
verbs: |
|
- get |
|
- create |
|
- update |
|
- apiGroups: |
|
- "" |
|
resources: |
|
- events |
|
verbs: |
|
- create |
|
- patch |
|
- update |
|
- apiGroups: |
|
- "" |
|
resources: |
|
- nodes |
|
verbs: |
|
- '*' |
|
- apiGroups: |
|
- "" |
|
resources: |
|
- nodes/status |
|
verbs: |
|
- patch |
|
- apiGroups: |
|
- "" |
|
resources: |
|
- services |
|
verbs: |
|
- list |
|
- patch |
|
- update |
|
- watch |
|
- apiGroups: |
|
- "" |
|
resources: |
|
- serviceaccounts |
|
verbs: |
|
- create |
|
- apiGroups: |
|
- "" |
|
resources: |
|
- persistentvolumes |
|
verbs: |
|
- get |
|
- list |
|
- update |
|
- watch |
|
- apiGroups: |
|
- "" |
|
resources: |
|
- endpoints |
|
verbs: |
|
- create |
|
- get |
|
- list |
|
- watch |
|
- update |
|
--- |
|
apiVersion: rbac.authorization.k8s.io/v1 |
|
kind: ClusterRoleBinding |
|
metadata: |
|
name: cloud-controller-manager |
|
roleRef: |
|
apiGroup: rbac.authorization.k8s.io |
|
kind: ClusterRole |
|
name: cloud-controller-manager |
|
subjects: |
|
- kind: User |
|
name: cloud-controller-manager |
|
namespace: kube-system
|
|
|