andata
/
rancher-partner-charts
mirror of https://git.rancher.io/partner-charts
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
rancher-partner-charts/charts/crowdstrike/falcon-sensor/templates/tests/test-cluster-permissions.yaml

41 lines
953 B
YAML
Raw Blame History

{{- if .Values.testing.enabled -}}
---
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole
metadata:
name: {{ include "falcon-sensor.fullname" . }}-test-access-role
labels:
{{- include "falcon-sensor.labels" . | nindent 4 }}
rules:
- apiGroups:
- ""
resources:
- pods
- namespaces
verbs:
- get
- list
- create
- update
---
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
name: {{ include "falcon-sensor.fullname" . }}-test-access-binding
labels:
{{- include "falcon-sensor.labels" . | nindent 4 }}
subjects:
{{- if .Values.container.enabled }}
- apiGroup: rbac.authorization.k8s.io
kind: Group
name: system:authenticated
{{- end }}
- kind: ServiceAccount
name: {{ .Values.serviceAccount.name }}
namespace: {{ .Release.Namespace }}
roleRef:
kind: ClusterRole
name: {{ include "falcon-sensor.fullname" . }}-test-access-role
apiGroup: rbac.authorization.k8s.io
{{- end -}}
Reference in New Issue View Git Blame Copy Permalink