gitlab-com-seaweedfs/seaweedfs
1
0
Fork 0
mirror of https://github.com/seaweedfs/seaweedfs.git synced 2024-01-19 02:48:24 +00:00
Code Issues Projects Releases Wiki Activity

User global.serviceAccountName to populate ServiceAccount, ClusterRole, and ClusterRoleBinding

Browse source
This commit is contained in:
jessebot 2023-11-26 13:27:35 +01:00 committed by Chris Lu
parent cf5703e86e
commit aff03c1d00
3 changed files with 8 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
k8s/charts/seaweedfs/Chart.yaml
View file

@ -2,4 +2,4 @@ apiVersion: v1
description: SeaweedFS description: SeaweedFS
name: seaweedfs name: seaweedfs
appVersion: "3.59" appVersion: "3.59"
version: 3.59.3 version: 3.59.4

10
k8s/charts/seaweedfs/templates/service-account.yaml
View file

@ -4,7 +4,7 @@
kind: ClusterRole kind: ClusterRole
apiVersion: rbac.authorization.k8s.io/v1 apiVersion: rbac.authorization.k8s.io/v1
metadata: metadata:
name: seaweedfs-rw-cr name: {{ .Values.global.serviceAccountName }}-rw-cr
labels: labels:
app.kubernetes.io/name: {{ template "seaweedfs.name" . }} app.kubernetes.io/name: {{ template "seaweedfs.name" . }}
helm.sh/chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }} helm.sh/chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }}
@ -18,7 +18,7 @@ rules:
apiVersion: v1 apiVersion: v1
kind: ServiceAccount kind: ServiceAccount
metadata: metadata:
name: seaweedfs-rw-sa name: {{ .Values.global.serviceAccountName }}
namespace: {{ .Release.Namespace }} namespace: {{ .Release.Namespace }}
labels: labels:
app.kubernetes.io/name: {{ template "seaweedfs.name" . }} app.kubernetes.io/name: {{ template "seaweedfs.name" . }}
@ -29,7 +29,7 @@ metadata:
kind: ClusterRoleBinding kind: ClusterRoleBinding
apiVersion: rbac.authorization.k8s.io/v1 apiVersion: rbac.authorization.k8s.io/v1
metadata: metadata:
name: system:serviceaccount:seaweedfs-rw-sa:default name: system:serviceaccount:{{ .Values.global.serviceAccountName }}:default
labels: labels:
app.kubernetes.io/name: {{ template "seaweedfs.name" . }} app.kubernetes.io/name: {{ template "seaweedfs.name" . }}
helm.sh/chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }} helm.sh/chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }}
@ -37,10 +37,10 @@ metadata:
app.kubernetes.io/instance: {{ .Release.Name }} app.kubernetes.io/instance: {{ .Release.Name }}
subjects: subjects:
- kind: ServiceAccount - kind: ServiceAccount
name: seaweedfs-rw-sa name: {{ .Values.global.serviceAccountName }}
namespace: {{ .Release.Namespace }} namespace: {{ .Release.Namespace }}
roleRef: roleRef:
apiGroup: rbac.authorization.k8s.io apiGroup: rbac.authorization.k8s.io
kind: ClusterRole kind: ClusterRole
name: seaweedfs-rw-cr name: {{ .Values.global.serviceAccountName }}-rw-cr
{{- end }} {{- end }}

2
k8s/charts/seaweedfs/values.yaml
View file

@ -16,6 +16,8 @@ global:
volumeRead: false volumeRead: false
filerWrite: false filerWrite: false
filerRead: false filerRead: false
# we will use this serviceAccountName for all ClusterRoles/ClusterRoleBindings
serviceAccountName: "seaweedfs"
certificates: certificates:
alphacrds: false alphacrds: false
monitoring: monitoring: