charts/rook-ceph/templates/aggregate-roles.yaml - atmosphere - Gitiles

 {{- if .Values.rbacAggregate.enableOBCs }}
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
   name: rook-ceph-obc-view
   labels:
     rbac.authorization.k8s.io/aggregate-to-view: "true"
 rules:
 - apiGroups:
   - objectbucket.io
   resources:
   - objectbucketclaims
   verbs:
   - get
   - list
   - watch
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
   name: rook-ceph-obc-edit
   labels:
     rbac.authorization.k8s.io/aggregate-to-edit: "true"
 rules:
 - apiGroups:
   - objectbucket.io
   resources:
   - objectbucketclaims
   verbs:
   - create
   - delete
   - deletecollection
   - patch
   - update
 {{- end }}
	{{- if .Values.rbacAggregate.enableOBCs }}
	apiVersion: rbac.authorization.k8s.io/v1
	kind: ClusterRole
	metadata:
	name: rook-ceph-obc-view
	labels:
	rbac.authorization.k8s.io/aggregate-to-view: "true"
	rules:
	- apiGroups:
	- objectbucket.io
	resources:
	- objectbucketclaims
	verbs:
	- get
	- list
	- watch
	---
	apiVersion: rbac.authorization.k8s.io/v1
	kind: ClusterRole
	metadata:
	name: rook-ceph-obc-edit
	labels:
	rbac.authorization.k8s.io/aggregate-to-edit: "true"
	rules:
	- apiGroups:
	- objectbucket.io
	resources:
	- objectbucketclaims
	verbs:
	- create
	- delete
	- deletecollection
	- patch
	- update
	{{- end }}