# Licensed to the Apache Software Foundation (ASF) under one # or more contributor license agreements. See the NOTICE file # distributed with this work for additional information # regarding copyright ownership. The ASF licenses this file # to you under the Apache License, Version 2.0 (the # "License"); you may not use this file except in compliance # with the License. You may obtain a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, # software distributed under the License is distributed on an # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY # KIND, either express or implied. See the License for the # specific language governing permissions and limitations # under the License. # --- apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: name: 'milvus-operator-manager-role' rules: - apiGroups: - "" resources: - '*' verbs: - create - delete - get - list - patch - update - watch - apiGroups: - apiextensions.k8s.io resources: - customresourcedefinitions verbs: - get - list - watch - apiGroups: - apps resources: - '*' verbs: - create - delete - get - list - patch - update - watch - apiGroups: - batch resources: - jobs verbs: - create - delete - get - list - patch - update - watch - apiGroups: - extensions resources: - deployments - pods - secrets - services - statefulsets verbs: - create - delete - get - list - patch - update - watch - apiGroups: - extensions resources: - ingresses verbs: - create - delete - get - list - patch - update - watch - apiGroups: - milvus.io resources: - milvusclusters verbs: - create - delete - get - list - patch - update - watch - apiGroups: - milvus.io resources: - milvusclusters/finalizers verbs: - update - apiGroups: - milvus.io resources: - milvusclusters/status verbs: - get - patch - update - apiGroups: - milvus.io resources: - milvuses verbs: - create - delete - get - list - patch - update - watch - apiGroups: - milvus.io resources: - milvuses/finalizers verbs: - update - apiGroups: - milvus.io resources: - milvuses/status verbs: - get - patch - update - apiGroups: - milvus.io resources: - milvusupgrades verbs: - create - delete - get - list - patch - update - watch - apiGroups: - milvus.io resources: - milvusupgrades/finalizers verbs: - update - apiGroups: - milvus.io resources: - milvusupgrades/status verbs: - get - patch - update - apiGroups: - monitoring.coreos.com resources: - podmonitors - servicemonitors verbs: - create - delete - get - list - patch - update - watch - apiGroups: - networking.k8s.io resources: - ingresses verbs: - create - delete - get - list - patch - update - watch - apiGroups: - policy resources: - poddisruptionbudgets verbs: - create - delete - get - list - patch - update - watch - apiGroups: - policy resources: - podsecuritypolicies verbs: - create - delete - get - list - patch - update - watch - apiGroups: - rbac.authorization.k8s.io resources: - clusterrolebindings verbs: - create - delete - get - list - patch - update - watch - apiGroups: - rbac.authorization.k8s.io resources: - clusterroles verbs: - create - delete - get - list - patch - update - watch - apiGroups: - rbac.authorization.k8s.io resources: - rolebindings verbs: - create - delete - get - list - patch - update - watch - apiGroups: - rbac.authorization.k8s.io resources: - roles verbs: - create - delete - get - list - patch - update - watch --- # Source: milvus-operator/templates/clusterrolebinding.yaml apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: name: 'milvus-operator-manager-rolebinding' roleRef: apiGroup: rbac.authorization.k8s.io kind: ClusterRole name: 'milvus-operator-manager-role' subjects: - kind: ServiceAccount name: "nuvolaris-milvus-operator" namespace: "nuvolaris" --- # Source: milvus-operator/templates/role.yaml apiVersion: rbac.authorization.k8s.io/v1 kind: Role metadata: name: 'milvus-operator-leader-election-role' namespace: "nuvolaris" rules: - apiGroups: - "" resources: - configmaps verbs: - get - list - watch - create - update - patch - delete - apiGroups: - coordination.k8s.io resources: - leases verbs: - get - list - watch - create - update - patch - delete - apiGroups: - "" resources: - events verbs: - create - patch --- # Source: milvus-operator/templates/rolebinding.yaml apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: name: 'milvus-operator-leader-election-rolebinding' namespace: "nuvolaris" roleRef: apiGroup: rbac.authorization.k8s.io kind: Role name: 'milvus-operator-leader-election-role' subjects: - kind: ServiceAccount name: "nuvolaris-milvus-operator" namespace: "nuvolaris"