30 lines
810 B
YAML
30 lines
810 B
YAML
# This rule is not used by the project unifi-network-operator itself.
|
|
# It is provided to allow the cluster admin to help manage permissions for users.
|
|
#
|
|
# Grants read-only access to unifi.engen.priv.no resources.
|
|
# This role is intended for users who need visibility into these resources
|
|
# without permissions to modify them. It is ideal for monitoring purposes and limited-access viewing.
|
|
|
|
apiVersion: rbac.authorization.k8s.io/v1
|
|
kind: ClusterRole
|
|
metadata:
|
|
labels:
|
|
app.kubernetes.io/name: unifi-network-operator
|
|
app.kubernetes.io/managed-by: kustomize
|
|
name: firewallpolicy-viewer-role
|
|
rules:
|
|
- apiGroups:
|
|
- unifi.engen.priv.no
|
|
resources:
|
|
- firewallpolicies
|
|
verbs:
|
|
- get
|
|
- list
|
|
- watch
|
|
- apiGroups:
|
|
- unifi.engen.priv.no
|
|
resources:
|
|
- firewallpolicies/status
|
|
verbs:
|
|
- get
|