...
5. Set up authorization for the user on RBAC level. Create a custom Cluster role node-reader for Cloudaware to be able to fetch the information about Cluster nodes:
| Code Block |
|---|
apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: name: node-reader rules: - apiGroups: [""] resources: ["nodes"] verbs: ["get", "watch", "list"] |
Create a RoleBinding - see the sample command below:
kubectl create -f cloudaware-user.yaml
Two bindings are in use: , the first one binds the default role view, the second one binds the custom Cluster role node-reader:
...