-
Notifications
You must be signed in to change notification settings - Fork 5
/
Copy pathargo-role.yaml
66 lines (65 loc) · 1.61 KB
/
argo-role.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
---
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole
metadata:
name: argocd-application-controller-clusterrole
rules:
- apiGroups: [""]
resources: ["namespaces"]
verbs: ["get", "list"]
---
# For a ClusterRoleBinding (cluster-wide)
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
name: argocd-application-controller-clusterrolebinding
subjects:
- kind: ServiceAccount
name: datamesh-ci-cd-argocd-application-controller
namespace: datamesh-ci-cd
roleRef:
kind: ClusterRole
name: argocd-application-controller-clusterrole
apiGroup: rbac.authorization.k8s.io
# ---
# # For a RoleBinding (namespace-scoped)
# apiVersion: rbac.authorization.k8s.io/v1
# kind: RoleBinding
# metadata:
# name: argocd-application-controller-rolebinding
# namespace: your-argo-cd-namespace
# subjects:
# - kind: ServiceAccount
# name: argocd-application-controller
# namespace: your-argo-cd-namespace
# roleRef:
# kind: Role
# name: argocd-application-controller-role
# apiGroup: rbac.authorization.k8s.io
# ---
# ---
# apiVersion: rbac.authorization.k8s.io/v1
# kind: Role
# metadata:
# namespace: your-argo-cd-namespace
# name: argocd-application-controller-role
# rules:
# - apiGroups: [""]
# resources: ["namespaces"]
# verbs: ["get", "list"]
# ---
# kind: Role
# apiVersion: rbac.authorization.k8s.io/v1
# metadata:
# name: argocd-application-controller
# namespace: datamesh-ci-cd
# labels:
# app.kubernetes.io/component: application-controller
# app.kubernetes.io/name: argocd-application-controller
# rules:
# - apiGroups:
# - '*'
# resources:
# - '*'
# verbs:
# - '*'