From a6de7c7c3eebe1af1c949fb197d133d72d243af0 Mon Sep 17 00:00:00 2001 From: David Seywald <83656386+dseywald@users.noreply.github.com> Date: Thu, 28 Mar 2024 09:58:37 +0100 Subject: [PATCH] Add read permissions for DynaKubes to ActiveGate role (#2929) Co-authored-by: David Seywald Co-authored-by: Lukas Hinterreiter <90035514+luhi-DT@users.noreply.github.com> --- .../clusterrole-kubernetes-monitoring.yaml | 8 ++++++++ .../clusterrole-kubernetes-monitoring_test.yaml | 11 +++++++++++ 2 files changed, 19 insertions(+) diff --git a/config/helm/chart/default/templates/Common/kubernetes-monitoring/clusterrole-kubernetes-monitoring.yaml b/config/helm/chart/default/templates/Common/kubernetes-monitoring/clusterrole-kubernetes-monitoring.yaml index 15de7e29d6..acc174cdf2 100644 --- a/config/helm/chart/default/templates/Common/kubernetes-monitoring/clusterrole-kubernetes-monitoring.yaml +++ b/config/helm/chart/default/templates/Common/kubernetes-monitoring/clusterrole-kubernetes-monitoring.yaml @@ -73,6 +73,14 @@ rules: - list - watch - get + - apiGroups: + - dynatrace.com + resources: + - dynakubes + verbs: + - list + - watch + - get - nonResourceURLs: - /metrics - /version diff --git a/config/helm/chart/default/tests/Common/kubernetes-monitoring/clusterrole-kubernetes-monitoring_test.yaml b/config/helm/chart/default/tests/Common/kubernetes-monitoring/clusterrole-kubernetes-monitoring_test.yaml index af8da90923..0a73e92678 100644 --- a/config/helm/chart/default/tests/Common/kubernetes-monitoring/clusterrole-kubernetes-monitoring_test.yaml +++ b/config/helm/chart/default/tests/Common/kubernetes-monitoring/clusterrole-kubernetes-monitoring_test.yaml @@ -82,6 +82,17 @@ tests: - list - watch - get + - contains: + path: rules + content: + apiGroups: + - dynatrace.com + resources: + - dynakubes + verbs: + - list + - watch + - get - contains: path: rules content: