Skip to content

Commit

Permalink
Merge pull request #1552 from alphagov/dj-maisy/kubectl-poweruser-nam…
Browse files Browse the repository at this point in the history 
…espaces

Allow GOV.UK "Power Users" to list k8s Namespaces
  • Loading branch information
@dj-maisy
dj-maisy authored Dec 18, 2024
2 parents 8334b71 + 9db81f0 commit ba59b38
Showing 1 changed file with 7 additions and 0 deletions.
7 changes: 7 additions & 0 deletions terraform/deployments/cluster-services/aws_auth_configmap.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -127,11 +127,18 @@ resource "kubernetes_cluster_role_binding" "read_crs_and_crbs" {

resource "kubernetes_cluster_role" "poweruser" {
metadata { name = "poweruser" }

rule {
api_groups = ["*"]
resources = ["*"]
verbs = ["*"]
}

rule {
api_groups = [""]
resources = ["namespaces"]
verbs = ["get", "list"]
}
}

resource "kubernetes_role_binding" "poweruser" {
Expand Down

0 comments on commit ba59b38

Please sign in to comment.