djpbessems/ContainerImage.Pinniped
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

RBAC rules for ldapidentityproviders to grant permissions to controller

Browse Source
This commit is contained in:
Ryan Richard 2021-04-13 17:26:53 -07:00
parent 14ff5ee4ff
commit 6bba529b10
1 changed files with 8 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
deploy/supervisor/rbac.yaml
View File

@ -32,6 +32,14 @@ rules:
- #@ pinnipedDevAPIGroupWithPrefix("idp.supervisor") - #@ pinnipedDevAPIGroupWithPrefix("idp.supervisor")
resources: [oidcidentityproviders/status] resources: [oidcidentityproviders/status]
verbs: [get, patch, update] verbs: [get, patch, update]
- apiGroups:
- #@ pinnipedDevAPIGroupWithPrefix("idp.supervisor")
resources: [ldapidentityproviders]
verbs: [get, list, watch]
- apiGroups:
- #@ pinnipedDevAPIGroupWithPrefix("idp.supervisor")
resources: [ldapidentityproviders/status]
verbs: [get, patch, update]
#! We want to be able to read pods/replicasets/deployment so we can learn who our deployment is to set #! We want to be able to read pods/replicasets/deployment so we can learn who our deployment is to set
#! as an owner reference. #! as an owner reference.
- apiGroups: [""] - apiGroups: [""]