Role Based Access Control (RBAC)
In Kubernetes or OpenShift you can set Role Based Access Control for your application or microservice (rbac policies and role objects).
This page explains you how.
1. In your manifest repository's main branch, you will find the values.yaml file, it showld be in the following folder structure [environment]/[project]/[application]
2. In the values.yaml file, search for the Additional Customizations section, you will find it like this:
## Additional Customizations #################################################
3. Bellow the section title, add the following configuration and change the values as you need:
# - Role Based Access Control (RBAC)
rbac:
# Enable RBAC: true or false
enabled: true
# Service Account to use by pods
serviceAccount:
enabled: false
name: ""
# Additional Labels on service account
additionalLabels:
#key: value
# Annotations on service account
annotations:
#key: value
# Create Roles (Namespaced)
roles:
#- name: configmaps
#rules:
#- apiGroups:
#- ""
#resources:
#- configmaps
#verbs:
#- get
#- name: secrets
#rules:
#- apiGroups:
#- ""
#resources:
#- secrets
#verbs:
#- get
#####
3. Commit and enjoy! ✨