feat: Add ArgoCD diff workflow #35
1 changed files with 0 additions and 74 deletions
|
|
@ -266,77 +266,3 @@ server:
|
||||||
- groups
|
- groups
|
||||||
rbac:
|
rbac:
|
||||||
enabled: true
|
enabled: true
|
||||||
|
|
||||||
# -- Array of extra K8s manifests to deploy
|
|
||||||
extraObjects:
|
|
||||||
- apiVersion: v1
|
|
||||||
kind: ServiceAccount
|
|
||||||
metadata:
|
|
||||||
name: admin-user
|
|
||||||
namespace: argo-workflows
|
|
||||||
annotations:
|
|
||||||
workflows.argoproj.io/rbac-rule: "'ArgoCD Admins' in groups"
|
|
||||||
workflows.argoproj.io/rbac-rule-precedence: "1"
|
|
||||||
- apiVersion: v1
|
|
||||||
kind: ServiceAccount
|
|
||||||
metadata:
|
|
||||||
name: read-only
|
|
||||||
namespace: argo-workflows
|
|
||||||
annotations:
|
|
||||||
workflows.argoproj.io/rbac-rule: "true"
|
|
||||||
workflows.argoproj.io/rbac-rule-precedence: "0"
|
|
||||||
- apiVersion: rbac.authorization.k8s.io/v1
|
|
||||||
kind: ClusterRoleBinding
|
|
||||||
metadata:
|
|
||||||
name: argo-workflows-admin-user
|
|
||||||
subjects:
|
|
||||||
- kind: ServiceAccount
|
|
||||||
name: admin-user
|
|
||||||
namespace: argo-workflows
|
|
||||||
roleRef:
|
|
||||||
kind: ClusterRole
|
|
||||||
name: argo-workflows-admin
|
|
||||||
apiGroup: rbac.authorization.k8s.io
|
|
||||||
- apiVersion: rbac.authorization.k8s.io/v1
|
|
||||||
kind: ClusterRoleBinding
|
|
||||||
metadata:
|
|
||||||
name: argo-workflows-read-only
|
|
||||||
subjects:
|
|
||||||
- kind: ServiceAccount
|
|
||||||
name: read-only
|
|
||||||
namespace: argo-workflows
|
|
||||||
roleRef:
|
|
||||||
kind: ClusterRole
|
|
||||||
name: argo-workflows-view
|
|
||||||
apiGroup: rbac.authorization.k8s.io
|
|
||||||
- apiVersion: rbac.authorization.k8s.io/v1
|
|
||||||
kind: Role
|
|
||||||
metadata:
|
|
||||||
name: argo-workflows-server-sso
|
|
||||||
namespace: argo-workflows
|
|
||||||
rules:
|
|
||||||
- apiGroups:
|
|
||||||
- ""
|
|
||||||
resources:
|
|
||||||
- serviceaccounts
|
|
||||||
verbs:
|
|
||||||
- get
|
|
||||||
- apiGroups:
|
|
||||||
- ""
|
|
||||||
resources:
|
|
||||||
- serviceaccounts/token
|
|
||||||
verbs:
|
|
||||||
- create
|
|
||||||
- apiVersion: rbac.authorization.k8s.io/v1
|
|
||||||
kind: RoleBinding
|
|
||||||
metadata:
|
|
||||||
name: argo-workflows-server-sso
|
|
||||||
namespace: argo-workflows
|
|
||||||
subjects:
|
|
||||||
- kind: ServiceAccount
|
|
||||||
name: argo-workflows-server
|
|
||||||
namespace: argo-workflows
|
|
||||||
roleRef:
|
|
||||||
kind: Role
|
|
||||||
name: argo-workflows-server-sso
|
|
||||||
apiGroup: rbac.authorization.k8s.io
|
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue