Permalink
Cannot retrieve contributors at this time
apiVersion: v1 | |
kind: Namespace | |
metadata: | |
labels: | |
app: prometheus | |
addonmanager.kubernetes.io/mode: EnsureExists | |
name: monitoring | |
--- | |
apiVersion: rbac.authorization.k8s.io/v1 | |
kind: ClusterRole | |
metadata: | |
name: psp:restricted | |
labels: | |
addonmanager.kubernetes.io/mode: EnsureExists | |
rules: | |
- apiGroups: ['extensions'] | |
resources: ['podsecuritypolicies'] | |
verbs: ['use'] | |
resourceNames: | |
- restricted | |
--- | |
apiVersion: rbac.authorization.k8s.io/v1 | |
kind: ClusterRole | |
metadata: | |
name: psp:privileged | |
labels: | |
addonmanager.kubernetes.io/mode: EnsureExists | |
rules: | |
- apiGroups: ['extensions'] | |
resources: ['podsecuritypolicies'] | |
verbs: ['use'] | |
resourceNames: | |
- privileged | |
--- | |
apiVersion: rbac.authorization.k8s.io/v1 | |
kind: ClusterRoleBinding | |
metadata: | |
name: default:restricted | |
labels: | |
addonmanager.kubernetes.io/mode: EnsureExists | |
roleRef: | |
apiGroup: rbac.authorization.k8s.io | |
kind: ClusterRole | |
name: psp:restricted | |
subjects: | |
- kind: Group | |
name: system:authenticated | |
apiGroup: rbac.authorization.k8s.io | |
--- | |
apiVersion: rbac.authorization.k8s.io/v1 | |
kind: RoleBinding | |
metadata: | |
name: default:privileged | |
namespace: kube-system | |
labels: | |
addonmanager.kubernetes.io/mode: EnsureExists | |
roleRef: | |
apiGroup: rbac.authorization.k8s.io | |
kind: ClusterRole | |
name: psp:privileged | |
subjects: | |
- kind: Group | |
name: system:serviceaccounts:kube-system | |
apiGroup: rbac.authorization.k8s.io | |
--- | |
apiVersion: rbac.authorization.k8s.io/v1 | |
kind: RoleBinding | |
metadata: | |
name: default:privileged | |
namespace: monitoring | |
labels: | |
addonmanager.kubernetes.io/mode: EnsureExists | |
roleRef: | |
apiGroup: rbac.authorization.k8s.io | |
kind: ClusterRole | |
name: psp:privileged | |
subjects: | |
- kind: Group | |
name: system:serviceaccounts:monitoring | |
apiGroup: rbac.authorization.k8s.io |