You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

cluster_role.yaml 860 B

1 month ago
1 month ago
1 month ago
1 month ago
1234567891011121314151617181920212223242526272829303132333435363738394041424344
  1. # 为pod中的服务赋予发现服务和读取配置的权限
  2. apiVersion: rbac.authorization.k8s.io/v1
  3. kind: ClusterRole
  4. metadata:
  5. name: pod-role
  6. namespace: egg-im
  7. rules:
  8. - apiGroups:
  9. - ""
  10. resources:
  11. - pods
  12. - pods/status
  13. - services
  14. - services/status
  15. - endpoints
  16. - endpoints/status
  17. - configmaps
  18. - configmaps/status
  19. verbs:
  20. - get
  21. - list
  22. - watch
  23. - apiGroups:
  24. - "discovery.k8s.io"
  25. resources:
  26. - endpointslices
  27. - endpointslices/status
  28. verbs:
  29. - get
  30. - list
  31. - watch
  32. ---
  33. apiVersion: rbac.authorization.k8s.io/v1
  34. kind: ClusterRoleBinding
  35. metadata:
  36. name: argo-namespaces-binding
  37. roleRef:
  38. apiGroup: rbac.authorization.k8s.io
  39. kind: ClusterRole
  40. name: pod-role
  41. subjects:
  42. - kind: ServiceAccount
  43. name: default
  44. namespace: egg-im