summaryrefslogtreecommitdiffstats
path: root/roles/openshift_bootstrap_autoapprover/files/openshift-bootstrap-controller-role.yaml
diff options
context:
space:
mode:
Diffstat (limited to 'roles/openshift_bootstrap_autoapprover/files/openshift-bootstrap-controller-role.yaml')
-rw-r--r--roles/openshift_bootstrap_autoapprover/files/openshift-bootstrap-controller-role.yaml21
1 files changed, 21 insertions, 0 deletions
diff --git a/roles/openshift_bootstrap_autoapprover/files/openshift-bootstrap-controller-role.yaml b/roles/openshift_bootstrap_autoapprover/files/openshift-bootstrap-controller-role.yaml
new file mode 100644
index 000000000..d8143d047
--- /dev/null
+++ b/roles/openshift_bootstrap_autoapprover/files/openshift-bootstrap-controller-role.yaml
@@ -0,0 +1,21 @@
+apiVersion: rbac.authorization.k8s.io/v1beta1
+kind: ClusterRole
+metadata:
+ name: system:node-bootstrap-autoapprover
+rules:
+- apiGroups:
+ - certificates.k8s.io
+ resources:
+ - certificatesigningrequests
+ verbs:
+ - delete
+ - get
+ - list
+ - watch
+- apiGroups:
+ - certificates.k8s.io
+ resources:
+ - certificatesigningrequests/approval
+ verbs:
+ - create
+ - update
generated by cgit v1.2.1 (git 2.18.0) at 2024-05-05 18:26:21 +0000