c12s-kubespray/roles/network_plugin/contiv/templates/contiv-netmaster-clusterrole.yml.j2
2018-09-17 16:45:05 +02:00

27 lines
448 B
Django/Jinja

kind: ClusterRole
apiVersion: rbac.authorization.k8s.io/v1beta1
metadata:
name: contiv-netmaster
namespace: kube-system
rules:
- apiGroups:
- ""
- extensions
resources:
- pods
- nodes
- namespaces
- networkpolicies
verbs:
- get
- watch
- list
- update
- apiGroups:
- policy
resourceNames:
- privileged
resources:
- podsecuritypolicies
verbs:
- use