39 lines
1.2 KiB
YAML
39 lines
1.2 KiB
YAML
|
{{/*
|
||
|
|
Copyright 2019 HAProxy Technologies LLC
|
||
|
|
|
||
|
|
Licensed under the Apache License, Version 2.0 (the "License");
|
||
|
|
you may not use this file except in compliance with the License.
|
||
|
|
You may obtain a copy of the License at
|
||
|
|
|
||
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
||
|
|
|
||
|
|
Unless required by applicable law or agreed to in writing, software
|
||
|
|
distributed under the License is distributed on an "AS IS" BASIS,
|
||
|
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
||
|
|
See the License for the specific language governing permissions and
|
||
|
|
limitations under the License.
|
||
|
|
*/}}
|
||
|
|
|
||
|
|
{{- if and .Values.rbac.create .Values.podSecurityPolicy.enabled -}}
|
||
|
|
apiVersion: rbac.authorization.k8s.io/v1
|
||
|
|
kind: Role
|
||
|
|
metadata:
|
||
|
|
name: {{ template "kubernetes-ingress.fullname" . }}
|
||
|
|
namespace: {{ .Release.Namespace }}
|
||
|
|
labels:
|
||
|
|
app.kubernetes.io/name: {{ template "kubernetes-ingress.name" . }}
|
||
|
|
helm.sh/chart: {{ template "kubernetes-ingress.chart" . }}
|
||
|
|
app.kubernetes.io/managed-by: {{ .Release.Service }}
|
||
|
|
app.kubernetes.io/instance: {{ .Release.Name }}
|
||
|
|
app.kubernetes.io/version: {{ .Chart.AppVersion }}
|
||
|
|
rules:
|
||
|
|
- apiGroups:
|
||
|
|
- "policy"
|
||
|
|
resources:
|
||
|
|
- podsecuritypolicies
|
||
|
|
verbs:
|
||
|
|
- use
|
||
|
|
resourceNames:
|
||
|
|
- {{ template "kubernetes-ingress.fullname" . }}
|
||
|
|
{{- end -}}
|