Implement configmap target check
Only include permissions to configmaps if target includes configmap. This reduces permissions.
This commit is contained in:
hardwarefresser
GitHub
parent
297aa0ddd1
commit
bb2e2e37dc
|
|
@ -18,6 +18,7 @@ rules:
|
||||||
- secrets
|
- secrets
|
||||||
verbs:
|
verbs:
|
||||||
- get
|
- get
|
||||||
|
{{- if and .Values.args (hasKey .Values.args "targets") .Values.args.targets (contains "configmap" .Values.args.targets) }}
|
||||||
- apiGroups:
|
- apiGroups:
|
||||||
- ""
|
- ""
|
||||||
resources:
|
resources:
|
||||||
|
|
@ -27,6 +28,7 @@ rules:
|
||||||
- create
|
- create
|
||||||
- list
|
- list
|
||||||
- delete
|
- delete
|
||||||
|
{{- end }}
|
||||||
- apiGroups:
|
- apiGroups:
|
||||||
- ""
|
- ""
|
||||||
resources:
|
resources:
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue