diff options
author | Staffan Olsson <staffan@repos.se> | 2017-08-05 06:24:38 +0200 |
---|---|---|
committer | Staffan Olsson <staffan@repos.se> | 2017-08-05 07:08:42 +0200 |
commit | f626a7764513fd85bdf721be766646312fd848b1 (patch) | |
tree | c8d6ad697a334672b4dadf5c7c15a79b476c6ae9 /rbac-namespace-default | |
parent | a30f22e324594ab1c6d14db1bdfd4f2ff1f7698e (diff) | |
download | kubernetes-kafka-f626a7764513fd85bdf721be766646312fd848b1.tar.gz kubernetes-kafka-f626a7764513fd85bdf721be766646312fd848b1.tar.bz2 kubernetes-kafka-f626a7764513fd85bdf721be766646312fd848b1.zip |
Adds RBAC policy for curl, default service account
Diffstat (limited to 'rbac-namespace-default')
-rw-r--r-- | rbac-namespace-default/events-watcher.yml | 30 |
1 files changed, 30 insertions, 0 deletions
diff --git a/rbac-namespace-default/events-watcher.yml b/rbac-namespace-default/events-watcher.yml new file mode 100644 index 0000000..c8384b6 --- /dev/null +++ b/rbac-namespace-default/events-watcher.yml @@ -0,0 +1,30 @@ +# If events-kube-kafka-* goes crashlooping you probably need this +--- +kind: ClusterRole +apiVersion: rbac.authorization.k8s.io/v1beta1 +metadata: + name: events-watcher + labels: + origin: github.com_Yolean_kubernetes-kafka +rules: +- apiGroups: + - "" + resources: + - events + verbs: + - watch +--- +kind: ClusterRoleBinding +apiVersion: rbac.authorization.k8s.io/v1beta1 +metadata: + name: kafka-events-watcher + labels: + origin: github.com_Yolean_kubernetes-kafka +roleRef: + apiGroup: rbac.authorization.k8s.io + kind: ClusterRole + name: events-watcher +subjects: +- kind: ServiceAccount + name: default + namespace: kafka |