Skip to content

Commit a5d89ed

Browse files
GackoGacko
committed
KCP: Grant delete permissions to Secrets.
1 parent 64c0753 commit a5d89ed

File tree

2 files changed

+2
-1
lines changed

2 files changed

+2
-1
lines changed

controlplane/kubeadm/config/rbac/role.yaml

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -25,6 +25,7 @@ rules:
2525
- secrets
2626
verbs:
2727
- create
28+
- delete
2829
- get
2930
- list
3031
- patch

controlplane/kubeadm/internal/controllers/controller.go

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -72,7 +72,7 @@ const (
7272
)
7373

7474
// +kubebuilder:rbac:groups=core,resources=events,verbs=create;patch
75-
// +kubebuilder:rbac:groups=core,resources=secrets,verbs=get;list;watch;create;update;patch
75+
// +kubebuilder:rbac:groups=core,resources=secrets,verbs=get;list;watch;create;update;patch;delete
7676
// +kubebuilder:rbac:groups=infrastructure.cluster.x-k8s.io;bootstrap.cluster.x-k8s.io;controlplane.cluster.x-k8s.io,resources=*,verbs=get;list;watch;create;update;patch;delete
7777
// +kubebuilder:rbac:groups=cluster.x-k8s.io,resources=clusters;clusters/status,verbs=get;list;watch
7878
// +kubebuilder:rbac:groups=cluster.x-k8s.io,resources=machines;machines/status,verbs=get;list;watch;create;update;patch;delete

0 commit comments

Comments
 (0)