open-cluster-management.io/governance-policy-propagator@v0.13.0/deploy/rbac/role.yaml (about) 1 --- 2 apiVersion: rbac.authorization.k8s.io/v1 3 kind: ClusterRole 4 metadata: 5 name: governance-policy-propagator 6 rules: 7 - apiGroups: 8 - '*' 9 resources: 10 - '*' 11 verbs: 12 - get 13 - list 14 - watch 15 - apiGroups: 16 - apps.open-cluster-management.io 17 resources: 18 - placementrules 19 verbs: 20 - get 21 - list 22 - watch 23 - apiGroups: 24 - authorization.k8s.io 25 resources: 26 - subjectaccessreviews 27 verbs: 28 - create 29 - apiGroups: 30 - cluster.open-cluster-management.io 31 resources: 32 - managedclusters 33 - placementdecisions 34 - placements 35 verbs: 36 - get 37 - list 38 - watch 39 - apiGroups: 40 - config.openshift.io 41 resourceNames: 42 - cluster 43 resources: 44 - dnses 45 verbs: 46 - get 47 - apiGroups: 48 - "" 49 resources: 50 - events 51 verbs: 52 - create 53 - delete 54 - get 55 - list 56 - patch 57 - update 58 - watch 59 - apiGroups: 60 - "" 61 resources: 62 - secrets 63 verbs: 64 - create 65 - apiGroups: 66 - "" 67 resourceNames: 68 - governance-policy-database 69 resources: 70 - secrets 71 verbs: 72 - get 73 - list 74 - watch 75 - apiGroups: 76 - "" 77 resourceNames: 78 - policy-encryption-key 79 resources: 80 - secrets 81 verbs: 82 - get 83 - list 84 - update 85 - watch 86 - apiGroups: 87 - policy.open-cluster-management.io 88 resources: 89 - placementbindings 90 verbs: 91 - create 92 - delete 93 - get 94 - list 95 - patch 96 - update 97 - watch 98 - apiGroups: 99 - policy.open-cluster-management.io 100 resources: 101 - policies 102 verbs: 103 - create 104 - delete 105 - get 106 - list 107 - patch 108 - update 109 - watch 110 - apiGroups: 111 - policy.open-cluster-management.io 112 resources: 113 - policies/finalizers 114 verbs: 115 - update 116 - apiGroups: 117 - policy.open-cluster-management.io 118 resources: 119 - policies/status 120 verbs: 121 - get 122 - patch 123 - update 124 - apiGroups: 125 - policy.open-cluster-management.io 126 resources: 127 - policyautomations 128 verbs: 129 - create 130 - delete 131 - get 132 - list 133 - patch 134 - update 135 - watch 136 - apiGroups: 137 - policy.open-cluster-management.io 138 resources: 139 - policyautomations/finalizers 140 verbs: 141 - update 142 - apiGroups: 143 - policy.open-cluster-management.io 144 resources: 145 - policyautomations/status 146 verbs: 147 - get 148 - patch 149 - update 150 - apiGroups: 151 - policy.open-cluster-management.io 152 resources: 153 - policysets 154 verbs: 155 - create 156 - delete 157 - get 158 - list 159 - patch 160 - update 161 - watch 162 - apiGroups: 163 - policy.open-cluster-management.io 164 resources: 165 - policysets/finalizers 166 verbs: 167 - update 168 - apiGroups: 169 - policy.open-cluster-management.io 170 resources: 171 - policysets/status 172 verbs: 173 - get 174 - patch 175 - update 176 - apiGroups: 177 - tower.ansible.com 178 resources: 179 - ansiblejobs 180 verbs: 181 - create 182 - delete 183 - deletecollection 184 - get 185 - list 186 - patch 187 - update 188 - watch