4 name: rook-csi-rbd-plugin-sa
9 apiVersion: rbac.authorization.k8s.io/v1
11 name: rbd-csi-nodeplugin
15 rbac.ceph.rook.io/aggregate-to-rbd-csi-nodeplugin: "true"
19 apiVersion: rbac.authorization.k8s.io/v1
21 name: rbd-csi-nodeplugin-rules
23 rbac.ceph.rook.io/aggregate-to-rbd-csi-nodeplugin: "true"
27 verbs: ["get", "list", "update"]
29 resources: ["namespaces"]
30 verbs: ["get", "list"]
32 resources: ["persistentvolumes"]
33 verbs: ["get", "list", "watch", "update"]
34 - apiGroups: ["storage.k8s.io"]
35 resources: ["volumeattachments"]
36 verbs: ["get", "list", "watch", "update"]
38 resources: ["configmaps"]
39 verbs: ["get", "list"]
42 kind: ClusterRoleBinding
43 apiVersion: rbac.authorization.k8s.io/v1
45 name: rbd-csi-nodeplugin
47 - kind: ServiceAccount
48 name: rook-csi-rbd-plugin-sa
52 name: rbd-csi-nodeplugin
53 apiGroup: rbac.authorization.k8s.io