Página inicial Explorar Ajuda
Entrar
akillibulut
/
kilo
mirror de https://github.com/squat/kilo
2
0
Fork 0
Arquivos Issues 0 Wiki
Ver código fonte

manifests: add RBAC resources

Lucas Serven 7 anos atrás
pai
630bced657
commit
465ae73370
3 arquivos alterados com 102 adições e 0 exclusões
Visão dividida Mostrar estatísticas do Diff
  1. 34 0
      manifests/kilo-bootkube.yaml
  2. 34 0
      manifests/kilo-kubeadm.yaml
  3. 34 0
      manifests/kilo-typhoon.yaml

+ 34 - 0
manifests/kilo-bootkube.yaml
Ver arquivo 

@@ -1,3 +1,36 @@
 
+apiVersion: v1
 
+kind: ServiceAccount
 
+metadata:
 
+  name: kilo
 
+  namespace: kube-system
 
+---
 
+apiVersion: rbac.authorization.k8s.io/v1beta1
 
+kind: ClusterRole
 
+metadata:
 
+  name: kilo
 
+rules:
 
+- apiGroups:
 
+  - ""
 
+  resources:
 
+  - nodes
 
+  verbs:
 
+  - list
 
+  - patch
 
+  - watch
 
+---
 
+apiVersion: rbac.authorization.k8s.io/v1
 
+kind: ClusterRoleBinding
 
+metadata:
 
+  name: kilo
 
+roleRef:
 
+  apiGroup: rbac.authorization.k8s.io
 
+  kind: ClusterRole
 
+  name: kilo
 
+subjects:
 
+  - kind: ServiceAccount
 
+    name: kilo
 
+    namespace: kube-system
 
+---
 
 apiVersion: extensions/v1beta1
 
 kind: DaemonSet
 
 metadata:
 
@@ -11,6 +44,7 @@ spec:
 
       labels:
 
         app.kubernetes.io/name: kilo
 
     spec:
 
+      serviceAccountName: kilo
 
       hostNetwork: true
 
       containers:
 
       - name: kilo

+ 34 - 0
manifests/kilo-kubeadm.yaml
Ver arquivo 

@@ -1,3 +1,36 @@
 
+apiVersion: v1
 
+kind: ServiceAccount
 
+metadata:
 
+  name: kilo
 
+  namespace: kube-system
 
+---
 
+apiVersion: rbac.authorization.k8s.io/v1beta1
 
+kind: ClusterRole
 
+metadata:
 
+  name: kilo
 
+rules:
 
+- apiGroups:
 
+  - ""
 
+  resources:
 
+  - nodes
 
+  verbs:
 
+  - list
 
+  - patch
 
+  - watch
 
+---
 
+apiVersion: rbac.authorization.k8s.io/v1
 
+kind: ClusterRoleBinding
 
+metadata:
 
+  name: kilo
 
+roleRef:
 
+  apiGroup: rbac.authorization.k8s.io
 
+  kind: ClusterRole
 
+  name: kilo
 
+subjects:
 
+  - kind: ServiceAccount
 
+    name: kilo
 
+    namespace: kube-system
 
+---
 
 apiVersion: extensions/v1beta1
 
 kind: DaemonSet
 
 metadata:
 
@@ -11,6 +44,7 @@ spec:
 
       labels:
 
         app.kubernetes.io/name: kilo
 
     spec:
 
+      serviceAccountName: kilo
 
       hostNetwork: true
 
       containers:
 
       - name: kilo

+ 34 - 0
manifests/kilo-typhoon.yaml
Ver arquivo 

@@ -1,3 +1,36 @@
 
+apiVersion: v1
 
+kind: ServiceAccount
 
+metadata:
 
+  name: kilo
 
+  namespace: kube-system
 
+---
 
+apiVersion: rbac.authorization.k8s.io/v1beta1
 
+kind: ClusterRole
 
+metadata:
 
+  name: kilo
 
+rules:
 
+- apiGroups:
 
+  - ""
 
+  resources:
 
+  - nodes
 
+  verbs:
 
+  - list
 
+  - patch
 
+  - watch
 
+---
 
+apiVersion: rbac.authorization.k8s.io/v1
 
+kind: ClusterRoleBinding
 
+metadata:
 
+  name: kilo
 
+roleRef:
 
+  apiGroup: rbac.authorization.k8s.io
 
+  kind: ClusterRole
 
+  name: kilo
 
+subjects:
 
+  - kind: ServiceAccount
 
+    name: kilo
 
+    namespace: kube-system
 
+---
 
 apiVersion: extensions/v1beta1
 
 kind: DaemonSet
 
 metadata:
 
@@ -11,6 +44,7 @@ spec:
 
       labels:
 
         app.kubernetes.io/name: kilo
 
     spec:
 
+      serviceAccountName: kilo
 
       hostNetwork: true
 
       containers:
 
       - name: kilo