github.com/IBM-Blockchain/fabric-operator@v1.0.4/sample-network/config/rbac/hlf-operator-clusterrole.yaml (about) 1 # 2 # Copyright contributors to the Hyperledger Fabric Operator project 3 # 4 # SPDX-License-Identifier: Apache-2.0 5 # 6 # Licensed under the Apache License, Version 2.0 (the "License"); 7 # you may not use this file except in compliance with the License. 8 # You may obtain a copy of the License at: 9 # 10 # http://www.apache.org/licenses/LICENSE-2.0 11 # 12 # Unless required by applicable law or agreed to in writing, software 13 # distributed under the License is distributed on an "AS IS" BASIS, 14 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 15 # See the License for the specific language governing permissions and 16 # limitations under the License. 17 # 18 --- 19 apiVersion: rbac.authorization.k8s.io/v1 20 kind: ClusterRole 21 metadata: 22 name: hlf-operator-role 23 labels: 24 release: "operator" 25 helm.sh/chart: "ibm-hlfsupport" 26 app.kubernetes.io/name: "ibm-hlfsupport" 27 app.kubernetes.io/instance: "ibm-hlfsupport" 28 app.kubernetes.io/managed-by: "ibm-hlfsupport-operator" 29 rules: 30 - apiGroups: 31 - apiextensions.k8s.io 32 resources: 33 - persistentvolumeclaims 34 - persistentvolumes 35 verbs: 36 - get 37 - list 38 - create 39 - update 40 - patch 41 - watch 42 - delete 43 - deletecollection 44 - apiGroups: 45 - apiextensions.k8s.io 46 resources: 47 - customresourcedefinitions 48 verbs: 49 - get 50 - apiGroups: 51 - route.openshift.io 52 resources: 53 - routes 54 - routes/custom-host 55 verbs: 56 - get 57 - list 58 - create 59 - update 60 - patch 61 - watch 62 - delete 63 - deletecollection 64 - apiGroups: 65 - "" 66 resources: 67 - pods 68 - pods/log 69 - persistentvolumeclaims 70 - persistentvolumes 71 - services 72 - endpoints 73 - events 74 - configmaps 75 - secrets 76 - nodes 77 - serviceaccounts 78 verbs: 79 - get 80 - list 81 - create 82 - update 83 - patch 84 - watch 85 - delete 86 - deletecollection 87 - apiGroups: 88 - "batch" 89 resources: 90 - jobs 91 verbs: 92 - get 93 - list 94 - create 95 - update 96 - patch 97 - watch 98 - delete 99 - deletecollection 100 - apiGroups: 101 - "authorization.openshift.io" 102 - "rbac.authorization.k8s.io" 103 resources: 104 - roles 105 - rolebindings 106 verbs: 107 - get 108 - list 109 - create 110 - update 111 - patch 112 - watch 113 - delete 114 - deletecollection 115 - bind 116 - escalate 117 - apiGroups: 118 - "" 119 resources: 120 - namespaces 121 verbs: 122 - get 123 - apiGroups: 124 - apps 125 resources: 126 - deployments 127 - daemonsets 128 - replicasets 129 - statefulsets 130 verbs: 131 - get 132 - list 133 - create 134 - update 135 - patch 136 - watch 137 - delete 138 - deletecollection 139 - apiGroups: 140 - monitoring.coreos.com 141 resources: 142 - servicemonitors 143 verbs: 144 - get 145 - create 146 - apiGroups: 147 - apps 148 resourceNames: 149 - ibm-hlfsupport-operator 150 resources: 151 - deployments/finalizers 152 verbs: 153 - update 154 - apiGroups: 155 - ibp.com 156 resources: 157 - ibpcas.ibp.com 158 - ibppeers.ibp.com 159 - ibporderers.ibp.com 160 - ibpconsoles.ibp.com 161 - ibpcas 162 - ibppeers 163 - ibporderers 164 - ibpconsoles 165 - ibpcas/finalizers 166 - ibppeers/finalizers 167 - ibporderers/finalizers 168 - ibpconsoles/finalizers 169 - ibpcas/status 170 - ibppeers/status 171 - ibporderers/status 172 - ibpconsoles/status 173 verbs: 174 - get 175 - list 176 - create 177 - update 178 - patch 179 - watch 180 - delete 181 - deletecollection 182 - apiGroups: 183 - extensions 184 - networking.k8s.io 185 - config.openshift.io 186 resources: 187 - ingresses 188 - networkpolicies 189 verbs: 190 - get 191 - list 192 - create 193 - update 194 - patch 195 - watch 196 - delete 197 - deletecollection