Mercurial > code > home > repos > victoriametrics

diff roles.yaml @ 0:7fe15c93585a

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
start
author drewp@bigasterisk.com
date Wed, 09 Feb 2022 00:20:56 -0800
parents
children
line wrap: on
line diff
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/roles.yaml	Wed Feb 09 00:20:56 2022 -0800
@@ -0,0 +1,43 @@
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: victoriametrics
+rules:
+- apiGroups: [""]
+  resources:
+  - nodes
+  - nodes/metrics
+  - nodes/proxy
+  - services
+  - endpoints
+  - pods
+  verbs: ["get", "list", "watch"]
+- apiGroups:
+  - extensions
+  resources:
+  - ingresses
+  verbs: ["get", "list", "watch"]
+- nonResourceURLs: ["/metrics"]
+  verbs: ["get"]
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: victoriametrics
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  name: victoriametrics
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: victoriametrics
+subjects:
+- kind: ServiceAccount
+  name: victoriametrics
+  namespace: default
+# # couldn't get prometheus to read the per-node telegraf metrics as 'prometheus' account
+# - kind: ServiceAccount
+#   name: default
+#   namespace: default
\ No newline at end of file