github.com/IBM-Blockchain/fabric-operator@v1.0.4/config/rbac/role.yaml (about) 1 # 2 # Copyright contributors to the Hyperledger Fabric Operator project 3 # 4 # SPDX-License-Identifier: Apache-2.0 5 # 6 # Licensed under the Apache License, Version 2.0 (the "License"); 7 # you may not use this file except in compliance with the License. 8 # You may obtain a copy of the License at: 9 # 10 # http://www.apache.org/licenses/LICENSE-2.0 11 # 12 # Unless required by applicable law or agreed to in writing, software 13 # distributed under the License is distributed on an "AS IS" BASIS, 14 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 15 # See the License for the specific language governing permissions and 16 # limitations under the License. 17 # 18 19 apiVersion: rbac.authorization.k8s.io/v1 20 kind: ClusterRole 21 metadata: 22 name: manager-role 23 rules: 24 - apiGroups: 25 - apiextensions.k8s.io 26 resources: 27 - persistentvolumeclaims 28 - persistentvolumes 29 verbs: 30 - get 31 - list 32 - create 33 - update 34 - patch 35 - watch 36 - delete 37 - deletecollection 38 - apiGroups: 39 - apiextensions.k8s.io 40 resources: 41 - customresourcedefinitions 42 verbs: 43 - get 44 - apiGroups: 45 - route.openshift.io 46 resources: 47 - routes 48 - routes/custom-host 49 verbs: 50 - get 51 - list 52 - create 53 - update 54 - patch 55 - watch 56 - delete 57 - deletecollection 58 - apiGroups: 59 - "" 60 resources: 61 - pods 62 - pods/log 63 - persistentvolumeclaims 64 - persistentvolumes 65 - services 66 - endpoints 67 - events 68 - configmaps 69 - secrets 70 - nodes 71 - serviceaccounts 72 verbs: 73 - get 74 - list 75 - create 76 - update 77 - patch 78 - watch 79 - delete 80 - deletecollection 81 - apiGroups: 82 - "batch" 83 resources: 84 - jobs 85 verbs: 86 - get 87 - list 88 - create 89 - update 90 - patch 91 - watch 92 - delete 93 - deletecollection 94 - apiGroups: 95 - "authorization.openshift.io" 96 - "rbac.authorization.k8s.io" 97 resources: 98 - roles 99 - rolebindings 100 verbs: 101 - get 102 - list 103 - create 104 - update 105 - patch 106 - watch 107 - delete 108 - deletecollection 109 - bind 110 - escalate 111 - apiGroups: 112 - "" 113 resources: 114 - namespaces 115 verbs: 116 - get 117 - apiGroups: 118 - apps 119 resources: 120 - deployments 121 - daemonsets 122 - replicasets 123 - statefulsets 124 verbs: 125 - get 126 - list 127 - create 128 - update 129 - patch 130 - watch 131 - delete 132 - deletecollection 133 - apiGroups: 134 - monitoring.coreos.com 135 resources: 136 - servicemonitors 137 verbs: 138 - get 139 - create 140 - apiGroups: 141 - apps 142 resourceNames: 143 - operator 144 resources: 145 - deployments/finalizers 146 verbs: 147 - update 148 - apiGroups: 149 - ibp.com 150 resources: 151 - ibpcas.ibp.com 152 - ibppeers.ibp.com 153 - ibporderers.ibp.com 154 - ibpconsoles.ibp.com 155 - ibpcas 156 - ibppeers 157 - ibporderers 158 - ibpconsoles 159 - ibpcas/finalizers 160 - ibppeers/finalizers 161 - ibporderers/finalizers 162 - ibpconsoles/finalizers 163 - ibpcas/status 164 - ibppeers/status 165 - ibporderers/status 166 - ibpconsoles/status 167 verbs: 168 - get 169 - list 170 - create 171 - update 172 - patch 173 - watch 174 - delete 175 - deletecollection 176 - apiGroups: 177 - extensions 178 - networking.k8s.io 179 - config.openshift.io 180 resources: 181 - ingresses 182 - networkpolicies 183 verbs: 184 - get 185 - list 186 - create 187 - update 188 - patch 189 - watch 190 - delete 191 - deletecollection 192 - apiGroups: 193 - coordination.k8s.io 194 resources: 195 - leases 196 verbs: 197 - create 198 - delete 199 - deletecollection 200 - get 201 - list 202 - patch 203 - update 204 - watch