kubernetes
/
examples
mirror of https://github.com/kubernetes/examples.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

elasticsearch: Add Role and RoleBinding for RBAC

This commit is contained in:
Antoine Cotten 2017-10-04 16:16:31 +02:00
parent f223c1e9ad
commit 202271d18d
No known key found for this signature in database
GPG Key ID: EA06C9A94E2B3EA0
2 changed files with 32 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
staging/elasticsearch/README.md
View File

@ -21,6 +21,13 @@ kubectl create -f staging/elasticsearch/es-svc.yaml
kubectl create -f staging/elasticsearch/es-rc.yaml kubectl create -f staging/elasticsearch/es-rc.yaml
``` ```
The [io.fabric8:elasticsearch-cloud-kubernetes](https://github.com/fabric8io/elasticsearch-cloud-kubernetes) plugin requires limited access to the Kubernetes API in order to fetch the list of Elasticsearch endpoints.
If your cluster has the RBAC authorization mode enabled, create the additional `Role` and `RoleBinding` with:
```
kubectl create -f staging/elasticsearch/rbac.yaml
```
Let's see if it worked: Let's see if it worked:
``` ```

25
staging/elasticsearch/rbac.yaml Normal file
View File

@ -0,0 +1,25 @@
---
apiVersion: rbac.authorization.k8s.io/v1beta1
kind: Role
metadata:
name: elasticsearch
rules:
- apiGroups:
- ""
resources:
- endpoints
verbs:
- get
---
apiVersion: rbac.authorization.k8s.io/v1beta1
kind: RoleBinding
metadata:
name: elasticsearch
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: Role
name: elasticsearch
subjects:
- kind: ServiceAccount
name: elasticsearch
namespace: default