| 12345678910111213141516171819202122232425262728293031 |
- {{- if or .Values.rbac.pspEnabled .Values.rbac.sccEnabled }}
- apiVersion: rbac.authorization.k8s.io/v1
- kind: Role
- metadata:
- name: {{ include "loki.fullname" . }}
- namespace: {{ .Release.Namespace }}
- labels:
- {{- include "loki.labels" . | nindent 4 }}
- {{- if .Values.rbac.pspEnabled }}
- rules:
- - apiGroups:
- - policy
- resources:
- - podsecuritypolicies
- verbs:
- - use
- resourceNames:
- - {{ include "loki.fullname" . }}
- {{- end }}
- {{- if .Values.rbac.sccEnabled }}
- rules:
- - apiGroups:
- - security.openshift.io
- resources:
- - securitycontextconstraints
- verbs:
- - use
- resourceNames:
- - {{ include "loki.fullname" . }}
- {{- end }}
- {{- end }}
|
