Merge "Add service permission to member role"
This commit is contained in:
commit
ff528d4342
@ -18,9 +18,17 @@ kind: ClusterRole
|
||||
metadata:
|
||||
name: rbac-members
|
||||
rules:
|
||||
# List and get configmap, pv & pvc and namespaces, nodes & pods & pod logs
|
||||
# List and get configmap, pv & pvc and namespaces, nodes & pods & pod logs & services
|
||||
- apiGroups: [""]
|
||||
resources: ["configmaps", "nodes", "namespaces", "persistentvolumeclaims", "persistentvolumes", "pods", "pods/log"]
|
||||
resources:
|
||||
- "configmaps"
|
||||
- "nodes"
|
||||
- "namespaces"
|
||||
- "persistentvolumeclaims"
|
||||
- "persistentvolumes"
|
||||
- "pods"
|
||||
- "pods/log"
|
||||
- "services"
|
||||
verbs: ["get", "list", "watch"]
|
||||
# List all get applications
|
||||
- apiGroups: ["apps"]
|
||||
|
@ -146,4 +146,10 @@
|
||||
- name: Ensure listing configmaps works
|
||||
shell: kubectl --context=test get configmaps
|
||||
- name: Ensure getting a configmap works
|
||||
shell: kubectl --context=test get configmap test
|
||||
shell: kubectl --context=test get configmap test
|
||||
|
||||
# List and get service
|
||||
- name: Ensure listing services works
|
||||
shell: kubectl --context=test get services
|
||||
- name: Ensure getting a configmap works
|
||||
shell: kubectl --context=test get service kubernetes
|
Loading…
Reference in New Issue
Block a user