Home Explore Help
Sign In
cecf
/
deploy
5
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: e4538f3d9b
Branches Tags
deploy
/
prometheus
/
templates
/
clusterrole.yaml

clusterrole.yaml 989 B
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748 
  1. {{- if and .Values.rbac.create (empty .Values.server.useExistingClusterRoleName) -}}
    2. 

  2. apiVersion: {{ template "rbac.apiVersion" . }}
    3. 

  3. kind: ClusterRole
    4. 

  4. metadata:
    5. 

  5.   labels:
    6. 

  6.     {{- include "prometheus.server.labels" . | nindent 4 }}
    7. 

  7.   name: {{ template "prometheus.server.fullname" . }}
    8. 

  8. rules:
    9. 

  9. {{- if .Values.podSecurityPolicy.enabled }}
    10. 

  10.   - apiGroups:
    11. 

  11.     - extensions
    12. 

  12.     resources:
    13. 

  13.     - podsecuritypolicies
    14. 

  14.     verbs:
    15. 

  15.     - use
    16. 

  16.     resourceNames:
    17. 

  17.     - {{ template "prometheus.server.fullname" . }}
    18. 

  18. {{- end }}
    19. 

  19.   - apiGroups:
    20. 

  20.       - ""
    21. 

  21.     resources:
    22. 

  22.       - nodes
    23. 

  23.       - nodes/proxy
    24. 

  24.       - nodes/metrics
    25. 

  25.       - services
    26. 

  26.       - endpoints
    27. 

  27.       - pods
    28. 

  28.       - ingresses
    29. 

  29.       - configmaps
    30. 

  30.     verbs:
    31. 

  31.       - get
    32. 

  32.       - list
    33. 

  33.       - watch
    34. 

  34.   - apiGroups:
    35. 

  35.       - "extensions"
    36. 

  36.       - "networking.k8s.io"
    37. 

  37.     resources:
    38. 

  38.       - ingresses/status
    39. 

  39.       - ingresses
    40. 

  40.     verbs:
    41. 

  41.       - get
    42. 

  42.       - list
    43. 

  43.       - watch
    44. 

  44.   - nonResourceURLs:
    45. 

  45.       - "/metrics"
    46. 

  46.     verbs:
    47. 

  47.       - get
    48. 

  48. {{- end }}
    49.