jonny/charts
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
29a3dde7ec
charts/goldilocks-7.3.1/templates/controller-clusterrolebinding.yaml
Jonny Ervine cf45a3f547 Update goldilocks
2024-02-06 23:46:03 +08:00

44 lines
1.4 KiB
YAML
Raw Blame History

{{- if and .Values.controller.rbac.create .Values.controller.enabled }}
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
name: {{ include "goldilocks.fullname" . }}-controller
labels:
app.kubernetes.io/name: {{ include "goldilocks.name" . }}
helm.sh/chart: {{ include "goldilocks.chart" . }}
app.kubernetes.io/instance: {{ .Release.Name }}
app.kubernetes.io/managed-by: {{ .Release.Service }}
app.kubernetes.io/component: controller
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: ClusterRole
name: {{ include "goldilocks.fullname" . }}-controller
subjects:
- kind: ServiceAccount
name: {{ template "controller.serviceAccountName" . }}
namespace: {{ .Release.Namespace }}
{{- range $.Values.controller.rbac.extraClusterRoleBindings }}
---
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
name: {{ include "goldilocks.fullname" $ }}-controller-{{ . }}
labels:
app.kubernetes.io/name: {{ include "goldilocks.name" $ }}
helm.sh/chart: {{ include "goldilocks.chart" $ }}
app.kubernetes.io/instance: {{ $.Release.Name }}
app.kubernetes.io/managed-by: {{ $.Release.Service }}
app.kubernetes.io/component: controller
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: ClusterRole
name: {{ . }}
subjects:
- kind: ServiceAccount
name: {{ include "goldilocks.fullname" $ }}-controller
namespace: {{ $.Release.Namespace }}
{{- end }}
{{- end }}
Reference in New Issue View Git Blame Copy Permalink