ingress-nginx-helm/charts/ingress-nginx/templates/clusterrole.yaml

{{- if and .Values.rbac.create (not .Values.rbac.scope) -}}
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole
metadata:
  labels:
    {{- include "ingress-nginx.labels" . | nindent 4 }}
  name: {{ include "ingress-nginx.fullname" . }}
rules:
  - apiGroups:
      - ""
    resources:
      - configmaps
      - endpoints
      - nodes
      - pods
      - secrets
    verbs:
      - list
      - watch
{{- if and .Values.controller.scope.enabled .Values.controller.scope.namespace }}
  - apiGroups:
      - ""
    resources:
      - namespaces
    resourceNames:
      - "{{ .Values.controller.scope.namespace }}"
    verbs:
      - get
{{- end }}
  - apiGroups:
      - ""
    resources:
      - nodes
    verbs:
      - get
  - apiGroups:
      - ""
    resources:
      - services
    verbs:
      - get
      - list
      - update
      - watch
  - apiGroups:
      - extensions
      - "networking.k8s.io" # k8s 1.14+
    resources:
      - ingresses
    verbs:
      - get
      - list
      - watch
  - apiGroups:
      - ""
    resources:
      - events
    verbs:
      - create
      - patch
  - apiGroups:
      - extensions
      - "networking.k8s.io" # k8s 1.14+
    resources:
      - ingresses/status
    verbs:
      - update
{{- end }}
Cleanup chart code 2020-03-02 14:49:26 +00:00			`{{- if and .Values.rbac.create (not .Values.rbac.scope) -}}`
Start migration of helm chart (#5159) 2020-02-24 19:25:57 +00:00			`apiVersion: rbac.authorization.k8s.io/v1`
			`kind: ClusterRole`
			`metadata:`
			`labels:`
Update helm templates to match new chart name 2020-02-28 14:53:24 +00:00			`{{- include "ingress-nginx.labels" . \| nindent 4 }}`
			`name: {{ include "ingress-nginx.fullname" . }}`
Start migration of helm chart (#5159) 2020-02-24 19:25:57 +00:00			`rules:`
			`- apiGroups:`
			`- ""`
			`resources:`
			`- configmaps`
			`- endpoints`
			`- nodes`
			`- pods`
			`- secrets`
			`verbs:`
			`- list`
			`- watch`
			`{{- if and .Values.controller.scope.enabled .Values.controller.scope.namespace }}`
			`- apiGroups:`
			`- ""`
			`resources:`
			`- namespaces`
			`resourceNames:`
			`- "{{ .Values.controller.scope.namespace }}"`
			`verbs:`
			`- get`
			`{{- end }}`
			`- apiGroups:`
			`- ""`
			`resources:`
			`- nodes`
			`verbs:`
			`- get`
			`- apiGroups:`
			`- ""`
			`resources:`
			`- services`
			`verbs:`
			`- get`
			`- list`
			`- update`
			`- watch`
			`- apiGroups:`
			`- extensions`
			`- "networking.k8s.io" # k8s 1.14+`
			`resources:`
			`- ingresses`
			`verbs:`
			`- get`
			`- list`
			`- watch`
			`- apiGroups:`
			`- ""`
			`resources:`
			`- events`
			`verbs:`
			`- create`
			`- patch`
			`- apiGroups:`
			`- extensions`
			`- "networking.k8s.io" # k8s 1.14+`
			`resources:`
			`- ingresses/status`
			`verbs:`
			`- update`
Cleanup chart code 2020-03-02 14:49:26 +00:00			`{{- end }}`