diff options
| author | mcen1 <49885111+mcen1@users.noreply.github.com> | 2023-08-02 21:27:18 +0200 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2023-08-02 21:27:18 +0200 |
| commit | 90c3d8a2755b4315626c30c9643cabc1d6af8940 (patch) | |
| tree | 5db82ceabb9bbcd32e77d50a0b4058d4ffeac0aa /docs/container_groups | |
| parent | Fix trial status and host limit with sub (#14237) (diff) | |
| download | awx-90c3d8a2755b4315626c30c9643cabc1d6af8940.tar.xz awx-90c3d8a2755b4315626c30c9643cabc1d6af8940.zip | |
Update example service-account.yml for container group in documentation (#13479)
Co-authored-by: Hao Liu <44379968+TheRealHaoLiu@users.noreply.github.com>
Co-authored-by: Nana <35573203+masbahnana@users.noreply.github.com>
Diffstat (limited to 'docs/container_groups')
| -rw-r--r-- | docs/container_groups/service-account.yml | 31 |
1 files changed, 18 insertions, 13 deletions
diff --git a/docs/container_groups/service-account.yml b/docs/container_groups/service-account.yml index 20e4e7c0fa..37a215b154 100644 --- a/docs/container_groups/service-account.yml +++ b/docs/container_groups/service-account.yml @@ -13,30 +13,35 @@ apiVersion: v1 kind: ServiceAccount metadata: - name: awx - + name: containergroup-service-account + namespace: containergroup-namespace --- -apiVersion: rbac.authorization.k8s.io/v1 kind: Role +apiVersion: rbac.authorization.k8s.io/v1 metadata: - name: pod-manager + name: role-containergroup-service-account + namespace: containergroup-namespace rules: - - apiGroups: [""] # "" indicates the core API group + - apiGroups: [""] resources: ["pods"] verbs: ["get", "list", "watch", "create", "update", "patch", "delete"] - apiGroups: [""] - resources: ["pods/exec"] - verbs: ["create"] - + resources: ["pods/log"] + verbs: ["get", "list", "watch", "create", "update", "patch", "delete"] + - apiGroups: [""] + resources: ["pods/attach"] + verbs: ["get", "list", "watch", "create", "update", "patch", "delete"] --- kind: RoleBinding -apiVersion: rbac.authorization.k8s.io/v1beta1 +apiVersion: rbac.authorization.k8s.io/v1 metadata: - name: awx-pod-manager + name: role-containergroup-service-account-binding + namespace: containergroup-namespace subjects: - kind: ServiceAccount - name: awx + name: containergroup-service-account + namespace: containergroup-namespace roleRef: - apiGroup: rbac.authorization.k8s.io kind: Role - name: pod-manager + name: role-containergroup-service-account + apiGroup: rbac.authorization.k8s.io |