Add RBAC config for CPU webhookcfg-controller 62/962/2
authorKrisztian Lengyel <krisztian.lengyel@nokia.com>
Fri, 7 Jun 2019 12:42:38 +0000 (14:42 +0200)
committerKrisztian Lengyel <krisztian.lengyel@nokia.com>
Fri, 14 Jun 2019 05:48:23 +0000 (07:48 +0200)
Change-Id: I2c6a1f33cd4b06d1b3f41b3db3935c83fdabed7b
Signed-off-by: Krisztian Lengyel <krisztian.lengyel@nokia.com>
rbac_manifests/webhook-conf-controller-config.yaml [new file with mode: 0644]
rpmbuild.spec

diff --git a/rbac_manifests/webhook-conf-controller-config.yaml b/rbac_manifests/webhook-conf-controller-config.yaml
new file mode 100644 (file)
index 0000000..307df88
--- /dev/null
@@ -0,0 +1,30 @@
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: webhookcfg-controller
+  namespace: kube-system
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: caas:webhookcfg-controller
+  namespace: kube-system
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - mutatingwebhookconfigurations
+  verbs: ["get", "update"]
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  name: caas:webhookcfg-controller
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: caas:webhookcfg-controller
+subjects:
+- kind: ServiceAccount
+  name: webhookcfg-controller
+  namespace: kube-system
\ No newline at end of file
index d6a7a70..56a927d 100644 (file)
@@ -15,7 +15,7 @@
 %define COMPONENT security
 %define RPM_NAME caas-%{COMPONENT}
 %define RPM_MAJOR_VERSION 1.0.0
-%define RPM_MINOR_VERSION 1
+%define RPM_MINOR_VERSION 2
 
 Name:           %{RPM_NAME}
 Version:        %{RPM_MAJOR_VERSION}