rancher-charts/packages/rancher-monitoring/rancher-kube-state-metrics/generated-changes/patch/templates/role.yaml.patch

--- charts-original/templates/role.yaml
+++ charts/templates/role.yaml
@@ -1,5 +1,8 @@
+{{- if not (kindIs "slice" .Values.collectors) }}
+{{- fail "Collectors need to be a List since kube-state-metrics chart 3.2.2. Please check README for more information."}}
+{{- end }}
 {{- if and (eq .Values.rbac.create true) (not .Values.rbac.useExistingRole) -}}
-{{- range (ternary (split "," .Values.namespaces) (list "") (eq $.Values.rbac.useClusterRole false)) }}
+{{- range (ternary (join "," .Values.namespaces | split "," ) (list "") (eq $.Values.rbac.useClusterRole false)) }}
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 {{- if eq $.Values.rbac.useClusterRole false }}
@@ -51,6 +54,12 @@
   - endpoints
   verbs: ["list", "watch"]
 {{ end -}}
+{{ if has "endpointslices" $.Values.collectors }}
+- apiGroups: ["discovery.k8s.io"]
+  resources:
+  - endpointslices
+  verbs: ["list", "watch"]
+{{ end -}}
 {{ if has "horizontalpodautoscalers" $.Values.collectors }}
 - apiGroups: ["autoscaling"]
   resources:
@@ -69,6 +78,12 @@
   - jobs
   verbs: ["list", "watch"]
 {{ end -}}
+{{ if has "leases" $.Values.collectors }}
+- apiGroups: ["coordination.k8s.io"]
+  resources:
+  - leases
+  verbs: ["list", "watch"]
+{{ end -}}
 {{ if has "limitranges" $.Values.collectors }}
 - apiGroups: [""]
   resources:
@@ -177,12 +192,22 @@
     - volumeattachments
   verbs: ["list", "watch"]
 {{ end -}}
-{{ if has "verticalpodautoscalers" $.Values.collectors }}
-- apiGroups: ["autoscaling.k8s.io"]
+{{-  if $.Values.kubeRBACProxy.enabled  }}
+- apiGroups: ["authentication.k8s.io"]
+  resources:
+    - tokenreviews
+  verbs: ["create"]
+- apiGroups: ["authorization.k8s.io"]
+  resources:
+    - subjectaccessreviews
+  verbs: ["create"]
+{{- end }}
+{{- if $.Values.customResourceState.enabled }}
+- apiGroups: ["apiextensions.k8s.io"]
   resources:
-    - verticalpodautoscalers
+    - customresourcedefinitions
   verbs: ["list", "watch"]
-{{ end -}}
+{{- end }}
 {{ if $.Values.rbac.extraRules }}
 {{ toYaml $.Values.rbac.extraRules }}
 {{ end }}
(dev-v2.6-archive) Merge pull request #1567 from jiaqiluo/rebase-monitoring (partially cherry picked from commit d6b619d203aa3afad8241e72028cfbeb1f07c5b3) 2021-11-19 22:19:23 +00:00			`--- charts-original/templates/role.yaml`
			`+++ charts/templates/role.yaml`
Rebase to kube-state-metrics-5.8.1 2023-07-11 18:34:11 +00:00			`@@ -1,5 +1,8 @@`
(dev-v2.6-archive) Merge pull request #1567 from jiaqiluo/rebase-monitoring (partially cherry picked from commit d6b619d203aa3afad8241e72028cfbeb1f07c5b3) 2021-11-19 22:19:23 +00:00			`+{{- if not (kindIs "slice" .Values.collectors) }}`
			`+{{- fail "Collectors need to be a List since kube-state-metrics chart 3.2.2. Please check README for more information."}}`
			`+{{- end }}`
			`{{- if and (eq .Values.rbac.create true) (not .Values.rbac.useExistingRole) -}}`
Rebase to kube-state-metrics-5.8.1 2023-07-11 18:34:11 +00:00			`-{{- range (ternary (split "," .Values.namespaces) (list "") (eq $.Values.rbac.useClusterRole false)) }}`
			`+{{- range (ternary (join "," .Values.namespaces \| split "," ) (list "") (eq $.Values.rbac.useClusterRole false)) }}`
(dev-v2.6-archive) Merge pull request #1567 from jiaqiluo/rebase-monitoring (partially cherry picked from commit d6b619d203aa3afad8241e72028cfbeb1f07c5b3) 2021-11-19 22:19:23 +00:00			`---`
Rebase to kube-state-metrics-5.8.1 2023-07-11 18:34:11 +00:00			`apiVersion: rbac.authorization.k8s.io/v1`
			`{{- if eq $.Values.rbac.useClusterRole false }}`
			`@@ -51,6 +54,12 @@`
			`- endpoints`
			`verbs: ["list", "watch"]`
			`{{ end -}}`
			`+{{ if has "endpointslices" $.Values.collectors }}`
			`+- apiGroups: ["discovery.k8s.io"]`
			`+ resources:`
			`+ - endpointslices`
			`+ verbs: ["list", "watch"]`
			`+{{ end -}}`
			`{{ if has "horizontalpodautoscalers" $.Values.collectors }}`
			`- apiGroups: ["autoscaling"]`
			`resources:`
			`@@ -69,6 +78,12 @@`
			`- jobs`
			`verbs: ["list", "watch"]`
			`{{ end -}}`
			`+{{ if has "leases" $.Values.collectors }}`
			`+- apiGroups: ["coordination.k8s.io"]`
			`+ resources:`
			`+ - leases`
			`+ verbs: ["list", "watch"]`
			`+{{ end -}}`
			`{{ if has "limitranges" $.Values.collectors }}`
			`- apiGroups: [""]`
			`resources:`
			`@@ -177,12 +192,22 @@`
			`- volumeattachments`
			`verbs: ["list", "watch"]`
			`{{ end -}}`
			`-{{ if has "verticalpodautoscalers" $.Values.collectors }}`
			`-- apiGroups: ["autoscaling.k8s.io"]`
			`+{{- if $.Values.kubeRBACProxy.enabled }}`
			`+- apiGroups: ["authentication.k8s.io"]`
			`+ resources:`
			`+ - tokenreviews`
			`+ verbs: ["create"]`
			`+- apiGroups: ["authorization.k8s.io"]`
			`+ resources:`
			`+ - subjectaccessreviews`
			`+ verbs: ["create"]`
			`+{{- end }}`
			`+{{- if $.Values.customResourceState.enabled }}`
			`+- apiGroups: ["apiextensions.k8s.io"]`
			`resources:`
			`- - verticalpodautoscalers`
			`+ - customresourcedefinitions`
			`verbs: ["list", "watch"]`
			`-{{ end -}}`
			`+{{- end }}`
			`{{ if $.Values.rbac.extraRules }}`
			`{{ toYaml $.Values.rbac.extraRules }}`
			`{{ end }}`