| 1234567891011121314151617181920212223242526272829 |
- apiVersion: v1
- kind: ServiceAccount
- metadata:
- name: gitlab
- namespace: default
- ---
- kind: Role
- apiVersion: rbac.authorization.k8s.io/v1
- metadata:
- namespace: default
- name: gitlab
- rules:
- - apiGroups: [""] # "" indicates the core API group
- resources: ["pods", "pods/exec", "secrets"]
- verbs: ["get", "list", "watch", "create", "patch", "delete"]
- ---
- kind: RoleBinding
- apiVersion: rbac.authorization.k8s.io/v1
- metadata:
- name: gitlab
- namespace: default
- subjects:
- - kind: ServiceAccount
- name: gitlab # Name is case sensitive
- apiGroup: ""
- roleRef:
- kind: Role #this must be Role or ClusterRole
- name: gitlab # this must match the name of the Role or ClusterRole you wish to bind to
- apiGroup: rbac.authorization.k8s.io
|
