diff --git a/helm_chart/templates/seed.yaml b/helm_chart/templates/seed.yaml
new file mode 100644
index 00000000..a8c32208
--- /dev/null
+++ b/helm_chart/templates/seed.yaml
@@ -0,0 +1,20 @@
+{{- range .Values.config.templates }}
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: template-namespaced-resources___{{ .name }}
+rules:
+  - apiGroups: 
+      {{- range .apiGroups }}
+        - {{ . | quote }}
+      {{- end }}
+    resources:
+      {{- range .resources }}
+        - {{ . | quote }}
+      {{- end }}
+    verbs:
+      {{- range .verbs }}
+        - {{ . | quote }}
+      {{- end }}
+{{- end }}
diff --git a/helm_chart/templates/seed.yml b/helm_chart/templates/seed.yml
deleted file mode 100644
index 74d72807..00000000
--- a/helm_chart/templates/seed.yml
+++ /dev/null
@@ -1,105 +0,0 @@
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  name: template-namespaced-resources___operation
-rules:
-  - apiGroups:
-      - "*"
-    resources:
-      - "*"
-    verbs:
-      - "*"
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  name: template-namespaced-resources___developer
-rules:
-  - apiGroups:
-      - "*"
-    resources:
-      - "configmaps"
-      - "endpoints"
-      - "persistentvolumeclaims"
-      - "pods"
-      - "pods/log"
-      - "pods/portforward"
-      - "podtemplates"
-      - "replicationcontrollers"
-      - "resourcequotas"
-      - "secrets"
-      - "services"
-      - "events"
-      - "daemonsets"
-      - "deployments"
-      - "replicasets"
-      - "ingresses"
-      - "networkpolicies"
-      - "poddisruptionbudgets"
-    verbs:
-      - "*"
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  name: template-cluster-resources___read-only
-rules:
-  - apiGroups:
-      - "*"
-    resources:
-      - "componentstatuses"
-      - "namespaces"
-      - "nodes"
-      - "persistentvolumes"
-      - "mutatingwebhookconfigurations"
-      - "validatingwebhookconfigurations"
-      - "customresourcedefinitions"
-      - "apiservices"
-      - "tokenreviews"
-      - "selfsubjectaccessreviews"
-      - "selfsubjectrulesreviews"
-      - "subjectaccessreviews"
-      - "certificatesigningrequests"
-      - "runtimeclasses"
-      - "podsecuritypolicies"
-      - "clusterrolebindings"
-      - "clusterroles"
-      - "priorityclasses"
-      - "csidrivers"
-      - "csinodes"
-      - "storageclasses"
-      - "volumeattachment"
-    verbs: ["get", "list", "watch"]
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  name: template-cluster-resources___admin
-rules:
-  - apiGroups:
-      - "*"
-    resources:
-      - "componentstatuses"
-      - "namespaces"
-      - "nodes"
-      - "persistentvolumes"
-      - "mutatingwebhookconfigurations"
-      - "validatingwebhookconfigurations"
-      - "customresourcedefinitions"
-      - "apiservices"
-      - "tokenreviews"
-      - "selfsubjectaccessreviews"
-      - "selfsubjectrulesreviews"
-      - "subjectaccessreviews"
-      - "certificatesigningrequests"
-      - "runtimeclasses"
-      - "podsecuritypolicies"
-      - "clusterrolebindings"
-      - "clusterroles"
-      - "priorityclasses"
-      - "csidrivers"
-      - "csinodes"
-      - "storageclasses"
-      - "volumeattachment"
-    verbs: ["*"]
diff --git a/helm_chart/values.yaml b/helm_chart/values.yaml
index b6702a6f..6e84306d 100644
--- a/helm_chart/values.yaml
+++ b/helm_chart/values.yaml
@@ -88,6 +88,7 @@ tolerations: []
 
 affinity: {}
 
+
 #
 # Application configuration:
 config: 
@@ -100,3 +101,97 @@ config:
 
   # Random password to login to web-app. PLEASE CHANGE!
   basicAuthPassword: RrXwZSBdTXhQL6 
+
+  templates: 
+    - name: operation
+      apiGroups:
+        - "*"
+      resources:
+        - "*"
+      verbs:
+        - "*"
+
+    - name: developer
+      apiGroups:
+        - "*"
+      resources: 
+        - "configmaps"
+        - "endpoints"
+        - "persistentvolumeclaims"
+        - "pods"
+        - "pods/log"
+        - "pods/portforward"
+        - "podtemplates"
+        - "replicationcontrollers"
+        - "resourcequotas"
+        - "secrets"
+        - "services"
+        - "events"
+        - "daemonsets"
+        - "deployments"
+        - "replicasets"
+        - "ingresses"
+        - "networkpolicies"
+        - "poddisruptionbudgets" 
+      verbs:
+        - "*"
+
+    - name: read-only
+      apiGroups:
+        - "*"
+      resources:
+        - "componentstatuses"
+        - "namespaces"
+        - "nodes"
+        - "persistentvolumes"
+        - "mutatingwebhookconfigurations"
+        - "validatingwebhookconfigurations"
+        - "customresourcedefinitions"
+        - "apiservices"
+        - "tokenreviews"
+        - "selfsubjectaccessreviews"
+        - "selfsubjectrulesreviews"
+        - "subjectaccessreviews"
+        - "certificatesigningrequests"
+        - "runtimeclasses"
+        - "podsecuritypolicies"
+        - "clusterrolebindings"
+        - "clusterroles"
+        - "priorityclasses"
+        - "csidrivers"
+        - "csinodes"
+        - "storageclasses"
+        - "volumeattachment"
+      verbs: 
+        - "get"
+        - "list"
+        - "watch"
+
+    - name: admin
+      apiGroups:
+      - "*"
+      resources:
+        - "componentstatuses"
+        - "namespaces"
+        - "nodes"
+        - "persistentvolumes"
+        - "mutatingwebhookconfigurations"
+        - "validatingwebhookconfigurations"
+        - "customresourcedefinitions"
+        - "apiservices"
+        - "tokenreviews"
+        - "selfsubjectaccessreviews"
+        - "selfsubjectrulesreviews"
+        - "subjectaccessreviews"
+        - "certificatesigningrequests"
+        - "runtimeclasses"
+        - "podsecuritypolicies"
+        - "clusterrolebindings"
+        - "clusterroles"
+        - "priorityclasses"
+        - "csidrivers"
+        - "csinodes"
+        - "storageclasses"
+        - "volumeattachment"
+      verbs: 
+        - "*"