alexlebens/external-snapshotter
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Allow csi-snapshotter to create and manage VolumeSnapshots

Browse Source 
This patch allows the `external-snapshotter-runner` ClusterRole, which
is bound to the `csi-snapshotter` Service Account, to create and manage
VolumeSnapshot objects.

This is needed during the synchronization of VolumeGroupSnapshots.
This commit is contained in:
Leonardo Cecchi
2023-11-13 20:45:21 +01:00
parent 36c3f6d7d7
commit 6ac1229ab8
1 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
deploy/kubernetes/csi-snapshotter/rbac-csi-snapshotter.yaml
View File

@@ -34,6 +34,9 @@ rules:
- apiGroups: ["snapshot.storage.k8s.io"] - apiGroups: ["snapshot.storage.k8s.io"]
resources: ["volumesnapshotclasses"] resources: ["volumesnapshotclasses"]
verbs: ["get", "list", "watch"] verbs: ["get", "list", "watch"]
- apiGroups: ["snapshot.storage.k8s.io"]
resources: ["volumesnapshots"]
verbs: ["get", "list", "watch", "update", "patch", "create"]
- apiGroups: ["snapshot.storage.k8s.io"] - apiGroups: ["snapshot.storage.k8s.io"]
resources: ["volumesnapshotcontents"] resources: ["volumesnapshotcontents"]
verbs: ["get", "list", "watch", "update", "patch", "create"] verbs: ["get", "list", "watch", "update", "patch", "create"]