actions/fluxcd-flux2
3
0
Fork 0
mirror of https://github.com/fluxcd/flux2.git synced 2026-02-24 00:21:46 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
1750 commits 27 branches 200 tags 17 MiB
Commit graph

5 commits

Author SHA1 Message Date
Max Jonas Werner
a21fd5a0e3
feat: create view/edit ClusterRoles upon install 
This way users can make use of these roles by having them
aggregated into the 'view', 'admin' and 'edit' ClusterRoles
present on Kubernetes clusters by default.

Without these roles you would have to bind subjects in a confined
Namespace to the `cluster-admin` ClusterRole which lets them create
cluster-scoped resources. To really confine subjects to a single
Namespace you would rather want to bind them to the `admin` or `edit`
ClusterRole so that they cannot create cluster-scoped resources. This
is where these new ClusterRoles created in this commit come into play,
letting subjects bound to one of these two ClusterRoles created Flux
CRDs such as HelmRelease or Kustomization.

Signed-off-by: Max Jonas Werner <mail@makk.es>
 2021-10-14 15:59:53 +02:00
Stefan Prodan
1b581d6f51
Add dedicated service accounts per controller 
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2021-01-26 12:27:58 +02:00
stefanprodan
47c249e3be manifests: fix leader election rbac 2020-05-03 13:05:35 +03:00
stefanprodan
b9a8100dbb manifests: add cluster reconciler RBAC and SA 2020-05-03 11:33:28 +03:00
stefanprodan
42d2ed51cb Add install manifests 2020-04-24 18:16:31 +03:00