30 lines
770 B
YAML
30 lines
770 B
YAML
# This rule is not used by the project yaho itself.
|
|
# It is provided to allow the cluster admin to help manage permissions for users.
|
|
#
|
|
# Grants read-only access to yaho.badhouseplants.net resources.
|
|
# This role is intended for users who need visibility into these resources
|
|
# without permissions to modify them. It is ideal for monitoring purposes and limited-access viewing.
|
|
|
|
apiVersion: rbac.authorization.k8s.io/v1
|
|
kind: ClusterRole
|
|
metadata:
|
|
labels:
|
|
app.kubernetes.io/name: yaho
|
|
app.kubernetes.io/managed-by: kustomize
|
|
name: helmvalues-viewer-role
|
|
rules:
|
|
- apiGroups:
|
|
- yaho.badhouseplants.net
|
|
resources:
|
|
- helmvalues
|
|
verbs:
|
|
- get
|
|
- list
|
|
- watch
|
|
- apiGroups:
|
|
- yaho.badhouseplants.net
|
|
resources:
|
|
- helmvalues/status
|
|
verbs:
|
|
- get
|