fix(argocd-notifications): Changes to rules RBAC role. (#697)

add role resourceNames argoproj-labs/argocd-notifications#199
allow configmap/secret list verb argoproj-labs/argocd-notifications#244

Signed-off-by: 1Psy <41047934+1Psy@users.noreply.github.com>

charts/argocd-notifications/Chart.yaml

@@ -3,7 +3,7 @@ appVersion: 1.1.1
 description: A Helm chart for ArgoCD notifications, an add-on to ArgoCD.
 name: argocd-notifications
 type: application
-version: 1.1.2
+version: 1.1.3
 home: https://github.com/argoproj/argo-helm
 icon: https://raw.githubusercontent.com/argoproj/argo/master/docs/assets/argo.png
 keywords:

charts/argocd-notifications/templates/bots/slack/role.yaml

@@ -4,6 +4,15 @@ kind: Role
 metadata:
   name: {{ include "argocd-notifications.name" . }}-bot
 rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  - configmaps
+  verbs:
+  - get
+  - list
+  - watch
 - apiGroups:
   - argoproj.io
   resources:
@@ -15,13 +24,4 @@ rules:
   - watch
   - update
   - patch
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  - configmaps
-  verbs:
-  - get
-  - list
-  - watch
 {{ end }}

charts/argocd-notifications/templates/role.yaml

@@ -19,9 +19,24 @@ rules:
 - apiGroups:
   - ""
   resources:
+  - configmaps
   - secrets
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - {{ include "argocd-notifications.name" . }}-cm
+  resources:
   - configmaps
   verbs:
   - get
-  - list
+- apiGroups:
-  - watch
+  - ""
+  resourceNames:
+  - {{ include "argocd-notifications.name" . }}-secret
+  resources:
+  - secrets
+  verbs:
+  - get