Skip to content

Commit

Permalink
add cozystack-cluster-admin
Browse files Browse the repository at this point in the history
  • Loading branch information
@klinch0
klinch0 committed Dec 6, 2024
1 parent d14b66c commit 706e472
Show file tree
Hide file tree
Showing 3 changed files with 44 additions and 0 deletions.
13 changes: 13 additions & 0 deletions packages/system/keycloak-configure/templates/configure-kk.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -225,3 +225,16 @@ spec:
realmRef:
name: keycloakrealm-cozy
kind: ClusterKeycloakRealm

---

apiVersion: v1.edp.epam.com/v1
kind: KeycloakRealmGroup
metadata:
name: cozystack-cluster-admin
namespace: cozy-dashboard
spec:
name: cozystack-cluster-admin
realmRef:
name: keycloakrealm-cozy
kind: ClusterKeycloakRealm
16 changes: 16 additions & 0 deletions packages/system/keycloak-configure/templates/rolebinding.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,3 +11,19 @@ subjects:
- apiGroup: rbac.authorization.k8s.io
kind: Group
name: kubeapps-admin

---

apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
name: cozystack-cluster-admin-group
namespace: cozy-dashboard
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: ClusterRole
name: cozystack-cluster-admin
subjects:
- apiGroup: rbac.authorization.k8s.io
kind: Group
name: cozystack-cluster-admin
15 changes: 15 additions & 0 deletions packages/system/keycloak-configure/templates/roles.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,15 @@
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole
metadata:
name: cozystack-cluster-admin
rules:
- apiGroups:
- '*'
resources:
- '*'
verbs:
- '*'
- nonResourceURLs:
- '*'
verbs:
- '*'

0 comments on commit 706e472

Please sign in to comment.