26 lines
922 B
YAML
26 lines
922 B
YAML
{{- if and (.Values.rbac.create) (not .Values.cleanup.serviceAccount) }}
|
|
{{- if .Capabilities.APIVersions.Has "rbac.authorization.k8s.io/v1" }}
|
|
apiVersion: rbac.authorization.k8s.io/v1
|
|
{{- else if .Capabilities.APIVersions.Has "rbac.authorization.k8s.io/v1beta1" }}
|
|
apiVersion: rbac.authorization.k8s.io/v1beta1
|
|
{{- else if .Capabilities.APIVersions.Has "rbac.authorization.k8s.io/v1alpha1" }}
|
|
apiVersion: rbac.authorization.k8s.io/v1alpha1
|
|
{{- end }}
|
|
kind: Role
|
|
metadata:
|
|
name: {{ template "cleanup.fullname" . }}
|
|
labels:
|
|
app: {{ template "fullname" . }}
|
|
chart: {{ .Chart.Name }}-{{ .Chart.Version }}
|
|
component: "{{ .Values.cleanup.name }}"
|
|
heritage: {{ .Release.Service }}
|
|
release: {{ .Release.Name }}
|
|
rules:
|
|
- apiGroups: [""]
|
|
resources: ["pods"]
|
|
verbs: ["get", "list", "delete", "patch"]
|
|
- apiGroups: ["batch"]
|
|
resources: ["jobs"]
|
|
verbs: ["get", "list", "delete"]
|
|
{{- end }}
|