github.com/metaprov/modela-operator@v0.0.0-20240118193048-f378be8b74d2/manifests/modela-system/dataplane/rbac.yaml (about)

     1  apiVersion: rbac.authorization.k8s.io/v1
     2  kind: ClusterRole
     3  metadata:
     4    labels:
     5      app.kubernetes.io/name: modela-data-plane
     6      app.kubernetes.io/part-of: modela
     7    name: modela-data-plane
     8  rules:
     9    - apiGroups: ["infra.modela.ai"]
    10      resources:
    11        - virtualbuckets
    12        - connections
    13        - modelasystems
    14      verbs:
    15        - get
    16        - list
    17    - apiGroups: ["data.modela.ai"]
    18      resources:
    19        - datasets
    20      verbs:
    21        - get
    22    - apiGroups: ["catalog.modela.ai"]
    23      resources:
    24        - publicdatasets
    25      verbs:
    26        - get
    27    - apiGroups: [""]
    28      resources:
    29        - configmaps
    30      verbs:
    31        - get
    32  ---
    33  
    34  apiVersion: rbac.authorization.k8s.io/v1
    35  kind: ClusterRoleBinding
    36  metadata:
    37    labels:
    38      app.kubernetes.io/name: modela-data-plane
    39      app.kubernetes.io/part-of: modela
    40    name: modela-data-plane
    41    namespace: modela-system
    42  roleRef:
    43    apiGroup: rbac.authorization.k8s.io
    44    kind: ClusterRole
    45    name: modela-data-plane
    46  subjects:
    47    - kind: User
    48      apiGroup: rbac.authorization.k8s.io
    49      name: system:serviceaccount:modela-system:modela-data-plane
    50      namespace: modela-system
    51  
    52  ---
    53  
    54  apiVersion: v1
    55  kind: ServiceAccount
    56  metadata:
    57    labels:
    58      app.kubernetes.io/name: modela-data-plane
    59      app.kubernetes.io/part-of: modela
    60    name: modela-data-plane
    61    namespace: modela-system