52 lines
1.3 KiB
YAML
52 lines
1.3 KiB
YAML
---
|
|
# Source: external-secrets/charts/external-secrets/templates/rbac.yaml
|
|
apiVersion: rbac.authorization.k8s.io/v1
|
|
kind: ClusterRole
|
|
metadata:
|
|
name: external-secrets-view
|
|
labels:
|
|
helm.sh/chart: external-secrets-1.1.0
|
|
app.kubernetes.io/name: external-secrets
|
|
app.kubernetes.io/instance: external-secrets
|
|
app.kubernetes.io/version: "v1.1.0"
|
|
app.kubernetes.io/managed-by: Helm
|
|
rbac.authorization.k8s.io/aggregate-to-view: "true"
|
|
rbac.authorization.k8s.io/aggregate-to-edit: "true"
|
|
rbac.authorization.k8s.io/aggregate-to-admin: "true"
|
|
rules:
|
|
- apiGroups:
|
|
- "external-secrets.io"
|
|
resources:
|
|
- "externalsecrets"
|
|
- "secretstores"
|
|
- "clustersecretstores"
|
|
- "pushsecrets"
|
|
- "clusterpushsecrets"
|
|
verbs:
|
|
- "get"
|
|
- "watch"
|
|
- "list"
|
|
- apiGroups:
|
|
- "generators.external-secrets.io"
|
|
resources:
|
|
- "acraccesstokens"
|
|
- "cloudsmithaccesstokens"
|
|
- "clustergenerators"
|
|
- "ecrauthorizationtokens"
|
|
- "fakes"
|
|
- "gcraccesstokens"
|
|
- "githubaccesstokens"
|
|
- "quayaccesstokens"
|
|
- "passwords"
|
|
- "sshkeys"
|
|
- "vaultdynamicsecrets"
|
|
- "webhooks"
|
|
- "grafanas"
|
|
- "generatorstates"
|
|
- "mfas"
|
|
- "uuids"
|
|
verbs:
|
|
- "get"
|
|
- "watch"
|
|
- "list"
|