mirror of
https://github.com/Infisical/infisical.git
synced 2026-01-09 23:48:05 -05:00
28 lines
775 B
YAML
28 lines
775 B
YAML
# This rule is not used by the project k8-operator itself.
|
|
# It is provided to allow the cluster admin to help manage permissions for users.
|
|
#
|
|
# Grants full permissions ('*') over secrets.infisical.com.
|
|
# This role is intended for users authorized to modify roles and bindings within the cluster,
|
|
# enabling them to delegate specific permissions to other users or groups as needed.
|
|
|
|
apiVersion: rbac.authorization.k8s.io/v1
|
|
kind: ClusterRole
|
|
metadata:
|
|
labels:
|
|
app.kubernetes.io/name: k8-operator
|
|
app.kubernetes.io/managed-by: kustomize
|
|
name: infisicalsecret-admin-role
|
|
rules:
|
|
- apiGroups:
|
|
- secrets.infisical.com
|
|
resources:
|
|
- infisicalsecrets
|
|
verbs:
|
|
- '*'
|
|
- apiGroups:
|
|
- secrets.infisical.com
|
|
resources:
|
|
- infisicalsecrets/status
|
|
verbs:
|
|
- get
|