DevFW-CICD/argocd-helm
6
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
argocd-helm/charts/argo-cd/templates/argocd-aggregate-roles.yaml
Christian Strack a795074dd1
feat(argo-cd): Add support for aggregation clusterroles (#865) 
* feat(argo-cd): Add support for aggregation clusterroles

* feat: Add support for aggregation clusterroles

Signed-off-by: Christian Strack <github@abyth.de>

* fix(argo-cd): Remove redundant whitespace from README.md

Signed-off-by: Christian Strack <github@abyth.de>

Co-authored-by: Marko Bevc <marko.bevc@gmail.com>

* fix(argo-cd): Remove component labels from aggregation roles

Signed-off-by: Christian Strack <github@abyth.de>

Co-authored-by: Marco Kilchhofer <mkilchhofer@users.noreply.github.com>

* fix(argo-cd): Use value `createAggregateRoles` to control role creation

* fix: Use value `createAggregateRoles` to control role creation
* bump version to 3.12.0
* update chart README.md accordingly

Signed-off-by: Christian Strack <github@abyth.de>

Co-authored-by: Marko Bevc <marko.bevc@gmail.com>
Co-authored-by: Marco Kilchhofer <mkilchhofer@users.noreply.github.com>
2021-08-13 22:15:02 +02:00

67 lines
1.3 KiB
YAML
Raw Blame History

{{- if .Values.createAggregateRoles }}
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole
metadata:
name: {{ include "argo-cd.fullname" . }}-aggregate-to-view
labels:
rbac.authorization.k8s.io/aggregate-to-view: "true"
{{- include "argo-cd.labels" (dict "context" .) | nindent 4 }}
rules:
- apiGroups:
- argoproj.io
resources:
- applications
- appprojects
verbs:
- get
- list
- watch
---
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole
metadata:
name: {{ include "argo-cd.fullname" . }}-aggregate-to-edit
labels:
rbac.authorization.k8s.io/aggregate-to-edit: "true"
{{- include "argo-cd.labels" (dict "context" .) | nindent 4 }}
rules:
- apiGroups:
- argoproj.io
resources:
- applications
- appprojects
verbs:
- create
- delete
- deletecollection
- get
- list
- patch
- update
- watch
---
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole
metadata:
name: {{ include "argo-cd.fullname" . }}-aggregate-to-admin
labels:
rbac.authorization.k8s.io/aggregate-to-admin: "true"
{{- include "argo-cd.labels" (dict "context" .) | nindent 4 }}
rules:
- apiGroups:
- argoproj.io
resources:
- applications
- appprojects
verbs:
- create
- delete
- deletecollection
- get
- list
- patch
- update
- watch
{{- end }}
Reference in a new issue View git blame Copy permalink