sigs.k8s.io/cluster-api-provider-azure@v1.14.3/config/rbac/role.yaml (about) 1 --- 2 apiVersion: rbac.authorization.k8s.io/v1 3 kind: ClusterRole 4 metadata: 5 name: manager-role 6 rules: 7 - apiGroups: 8 - "" 9 resources: 10 - events 11 verbs: 12 - create 13 - get 14 - list 15 - patch 16 - update 17 - watch 18 - apiGroups: 19 - "" 20 resources: 21 - namespaces 22 verbs: 23 - list 24 - apiGroups: 25 - "" 26 resources: 27 - secrets 28 verbs: 29 - create 30 - delete 31 - get 32 - list 33 - patch 34 - update 35 - watch 36 - apiGroups: 37 - authentication.k8s.io 38 resources: 39 - tokenreviews 40 verbs: 41 - create 42 - apiGroups: 43 - authorization.k8s.io 44 resources: 45 - subjectaccessreviews 46 verbs: 47 - create 48 - apiGroups: 49 - bootstrap.cluster.x-k8s.io 50 resources: 51 - kubeadmconfigs 52 - kubeadmconfigs/status 53 verbs: 54 - get 55 - list 56 - watch 57 - apiGroups: 58 - cluster.x-k8s.io 59 resources: 60 - clusters 61 - clusters/status 62 verbs: 63 - get 64 - list 65 - patch 66 - watch 67 - apiGroups: 68 - cluster.x-k8s.io 69 resources: 70 - machinepools 71 - machinepools/status 72 verbs: 73 - get 74 - list 75 - patch 76 - update 77 - watch 78 - apiGroups: 79 - cluster.x-k8s.io 80 resources: 81 - machines 82 - machines/status 83 verbs: 84 - delete 85 - get 86 - list 87 - watch 88 - apiGroups: 89 - containerservice.azure.com 90 resources: 91 - fleetsmembers 92 verbs: 93 - create 94 - delete 95 - get 96 - list 97 - patch 98 - update 99 - watch 100 - apiGroups: 101 - containerservice.azure.com 102 resources: 103 - fleetsmembers/status 104 verbs: 105 - get 106 - list 107 - watch 108 - apiGroups: 109 - containerservice.azure.com 110 resources: 111 - managedclusters 112 verbs: 113 - create 114 - delete 115 - get 116 - list 117 - patch 118 - update 119 - watch 120 - apiGroups: 121 - containerservice.azure.com 122 resources: 123 - managedclusters/status 124 verbs: 125 - get 126 - list 127 - watch 128 - apiGroups: 129 - containerservice.azure.com 130 resources: 131 - managedclustersagentpools 132 verbs: 133 - create 134 - delete 135 - get 136 - list 137 - patch 138 - update 139 - watch 140 - apiGroups: 141 - containerservice.azure.com 142 resources: 143 - managedclustersagentpools/status 144 verbs: 145 - get 146 - list 147 - watch 148 - apiGroups: 149 - "" 150 resources: 151 - nodes 152 verbs: 153 - get 154 - list 155 - watch 156 - apiGroups: 157 - infrastructure.cluster.x-k8s.io 158 resources: 159 - azureclusteridentities 160 - azureclusteridentities/status 161 verbs: 162 - create 163 - delete 164 - get 165 - list 166 - patch 167 - update 168 - watch 169 - apiGroups: 170 - infrastructure.cluster.x-k8s.io 171 resources: 172 - azureclusters 173 verbs: 174 - create 175 - delete 176 - get 177 - list 178 - patch 179 - update 180 - watch 181 - apiGroups: 182 - infrastructure.cluster.x-k8s.io 183 resources: 184 - azureclusters/status 185 verbs: 186 - get 187 - patch 188 - update 189 - apiGroups: 190 - infrastructure.cluster.x-k8s.io 191 resources: 192 - azuremachinepoolmachines 193 verbs: 194 - create 195 - delete 196 - get 197 - list 198 - patch 199 - update 200 - watch 201 - apiGroups: 202 - infrastructure.cluster.x-k8s.io 203 resources: 204 - azuremachinepoolmachines/status 205 verbs: 206 - get 207 - patch 208 - update 209 - apiGroups: 210 - infrastructure.cluster.x-k8s.io 211 resources: 212 - azuremachinepools 213 verbs: 214 - create 215 - delete 216 - get 217 - list 218 - patch 219 - update 220 - watch 221 - apiGroups: 222 - infrastructure.cluster.x-k8s.io 223 resources: 224 - azuremachinepools/status 225 verbs: 226 - get 227 - patch 228 - update 229 - apiGroups: 230 - infrastructure.cluster.x-k8s.io 231 resources: 232 - azuremachines 233 verbs: 234 - create 235 - delete 236 - get 237 - list 238 - patch 239 - update 240 - watch 241 - apiGroups: 242 - infrastructure.cluster.x-k8s.io 243 resources: 244 - azuremachines/status 245 verbs: 246 - get 247 - patch 248 - update 249 - apiGroups: 250 - infrastructure.cluster.x-k8s.io 251 resources: 252 - azuremachinetemplates 253 - azuremachinetemplates/status 254 verbs: 255 - get 256 - list 257 - watch 258 - apiGroups: 259 - infrastructure.cluster.x-k8s.io 260 resources: 261 - azuremanagedclusters 262 verbs: 263 - create 264 - delete 265 - get 266 - list 267 - patch 268 - update 269 - watch 270 - apiGroups: 271 - infrastructure.cluster.x-k8s.io 272 resources: 273 - azuremanagedclusters/status 274 verbs: 275 - get 276 - patch 277 - update 278 - apiGroups: 279 - infrastructure.cluster.x-k8s.io 280 resources: 281 - azuremanagedcontrolplanes 282 verbs: 283 - create 284 - delete 285 - get 286 - list 287 - patch 288 - update 289 - watch 290 - apiGroups: 291 - infrastructure.cluster.x-k8s.io 292 resources: 293 - azuremanagedcontrolplanes/status 294 verbs: 295 - get 296 - patch 297 - update 298 - apiGroups: 299 - infrastructure.cluster.x-k8s.io 300 resources: 301 - azuremanagedmachinepools 302 verbs: 303 - create 304 - delete 305 - get 306 - list 307 - patch 308 - update 309 - watch 310 - apiGroups: 311 - infrastructure.cluster.x-k8s.io 312 resources: 313 - azuremanagedmachinepools/status 314 verbs: 315 - get 316 - patch 317 - update 318 - apiGroups: 319 - kubernetesconfiguration.azure.com 320 resources: 321 - extensions 322 verbs: 323 - create 324 - delete 325 - get 326 - list 327 - patch 328 - update 329 - watch 330 - apiGroups: 331 - kubernetesconfiguration.azure.com 332 resources: 333 - extensions/status 334 verbs: 335 - get 336 - list 337 - watch 338 - apiGroups: 339 - network.azure.com 340 resources: 341 - bastionhosts 342 - natgateways 343 - privateendpoints 344 - virtualnetworks 345 - virtualnetworkssubnets 346 verbs: 347 - create 348 - delete 349 - get 350 - list 351 - patch 352 - update 353 - watch 354 - apiGroups: 355 - network.azure.com 356 resources: 357 - bastionhosts/status 358 - natgateways/status 359 - privateendpoints/status 360 - virtualnetworks/status 361 - virtualnetworkssubnets/status 362 verbs: 363 - get 364 - list 365 - watch 366 - apiGroups: 367 - network.azure.com 368 resources: 369 - privateendpoints 370 - virtualnetworks 371 - virtualnetworkssubnets 372 verbs: 373 - create 374 - delete 375 - get 376 - list 377 - patch 378 - update 379 - watch 380 - apiGroups: 381 - network.azure.com 382 resources: 383 - privateendpoints/status 384 - virtualnetworks/status 385 - virtualnetworkssubnets/status 386 verbs: 387 - get 388 - list 389 - watch 390 - apiGroups: 391 - resources.azure.com 392 resources: 393 - resourcegroups 394 verbs: 395 - create 396 - delete 397 - get 398 - list 399 - patch 400 - update 401 - watch 402 - apiGroups: 403 - resources.azure.com 404 resources: 405 - resourcegroups/status 406 verbs: 407 - get 408 - list 409 - watch