k8s rbac 记录

程序员文章站 2024-03-13 19:46:03

...

参考：https://www.huaweicloud.com/articles/5bf22633f80c0ad49479f3c9935b2534.html

以下是一段比较通配的rbac代码：

#  (2)serviceAccount
apiVersion: v1
kind: ServiceAccount
metadata:
  labels:
    k8s-app: 
  name: 
  namespace: 

   
---
#  (3)ClusterRole
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole
metadata:
  name: 
rules:
- apiGroups:
  - ""
  resources:
  - configmaps
  - endpoints
  - persistentvolumeclaims
  - replicationcontrollers
  - replicationcontrollers/scale
  - secrets
  - serviceaccounts
  - services
  - services/proxy
  verbs:
  - create
  - delete
  - deletecollection
  - get
  - list
  - patch
  - update
  - watch
- apiGroups:
  - extensions
  resources:
  - daemonsets
  - deployments
  - deployments/rollback
  - deployments/scale
  - ingresses
  - networkpolicies
  - replicasets
  - replicasets/scale
  - replicationcontrollers/scale
  verbs:
  - create
  - delete
  - deletecollection
  - get
  - list
  - patch
  - update
  - watch  
  
   
---

#  (4)ClusterRoleBinding
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
  labels:
    k8s-app: 
  name: 
roleRef:
  apiGroup: rbac.authorization.k8s.io
  kind: ClusterRole
  name: 
subjects:
- kind: ServiceAccount
  name: 
  namespace:

k8s rbac 记录

牛客网华为机试【简单错误记录】

CentOS的java环境配置记录

K8s生成证书，创建秘钥，今天是打工人or干饭人X?X~~~

K8S之pod入门和Lable

k8s启动owncloud服务

K8S快速入门-配置 kubectl 命令补全

微信机器人_微信聊天消息记录拦截分析

Mysql慢查询调优记录

Mondrian 决策方xml编写要点记录博客分类： Mondrian mondrianolap

Tiller pods can‘t connect to k8s apiserver，dial tcp 10.254.0.1:443: no route to host

k8s rbac 记录

牛客网华为机试【简单错误记录】

CentOS的java环境配置记录

K8s生成证书，创建秘钥，今天是打工人or干饭人X?X~~~

K8S之pod入门和Lable

k8s启动owncloud服务

K8S快速入门-配置 kubectl 命令补全

微信机器人_微信聊天消息记录拦截分析

Mysql慢查询调优记录

Mondrian 决策方xml编写要点记录 博客分类： Mondrian mondrianolap

Tiller pods can‘t connect to k8s apiserver，dial tcp 10.254.0.1:443: no route to host

Mondrian 决策方xml编写要点记录博客分类： Mondrian mondrianolap