summaryrefslogtreecommitdiff
path: root/astroshop-platform/argocd-helmchart/templates/argocd-server/role.yaml
diff options
context:
space:
mode:
Diffstat (limited to 'astroshop-platform/argocd-helmchart/templates/argocd-server/role.yaml')
-rw-r--r--astroshop-platform/argocd-helmchart/templates/argocd-server/role.yaml50
1 files changed, 50 insertions, 0 deletions
diff --git a/astroshop-platform/argocd-helmchart/templates/argocd-server/role.yaml b/astroshop-platform/argocd-helmchart/templates/argocd-server/role.yaml
new file mode 100644
index 0000000..8d12e30
--- /dev/null
+++ b/astroshop-platform/argocd-helmchart/templates/argocd-server/role.yaml
@@ -0,0 +1,50 @@
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+ name: {{ include "argo-cd.server.fullname" . }}
+ namespace: {{ include "argo-cd.namespace" . }}
+ labels:
+ {{- include "argo-cd.labels" (dict "context" . "component" .Values.server.name "name" .Values.server.name) | nindent 4 }}
+rules:
+- apiGroups:
+ - ""
+ resources:
+ - secrets
+ - configmaps
+ verbs:
+ - create
+ - get
+ - list
+ - watch
+ - update
+ - patch
+ - delete
+- apiGroups:
+ - argoproj.io
+ resources:
+ - applications
+ - applicationsets
+ - appprojects
+ verbs:
+ - create
+ - get
+ - list
+ - watch
+ - update
+ - delete
+ - patch
+- apiGroups:
+ - ""
+ resources:
+ - events
+ verbs:
+ - create
+ - list
+{{- if eq (toString (index .Values.configs.cm "exec.enabled")) "true" }}
+- apiGroups:
+ - ""
+ resources:
+ - pods/exec
+ verbs:
+ - create
+{{- end }}
generated by cgit v1.2.3 (git 2.25.1) at 2025-11-26 13:33:24 +0000