use of io.fabric8.kubernetes.api.model.rbac.ClusterRole in project elastest-torm by elastest.
the class K8sService method deleteClusterRoleBindingAdmin.
public void deleteClusterRoleBindingAdmin(String name, String namespace) throws Exception {
if (namespace != null && !"default".equals(namespace) && name != null && !"cluster-admin".equals("name")) {
String role = "cluster-admin";
logger.debug("Deleting Cluster Role Binding with name {} in the namespace {} with role {}", name, namespace, role);
ClusterRoleBinding clusterRoleBinding = new ClusterRoleBindingBuilder().withNewMetadata().withName(name).endMetadata().withRoleRef(new RoleRefBuilder().withName(role).withKind("ClusterRole").withApiGroup("rbac.authorization.k8s.io").build()).withSubjects(new SubjectBuilder().withKind("ServiceAccount").withNamespace(namespace).withName("default").build()).build();
client.rbac().clusterRoleBindings().delete(clusterRoleBinding);
logger.debug("Cluster Role Binding with name {} deleted successfully from namespace {}", name, namespace);
}
}
use of io.fabric8.kubernetes.api.model.rbac.ClusterRole in project elastest-torm by elastest.
the class K8sService method createClusterRoleBindingAdmin.
public void createClusterRoleBindingAdmin(String name, String namespace) throws Exception {
String role = "cluster-admin";
logger.debug("Creating Cluster Role Binding with name {} in the namespace {} with role {}", name, namespace, role);
ClusterRoleBinding clusterRoleBinding = new ClusterRoleBindingBuilder().withNewMetadata().withName(name).endMetadata().withRoleRef(new RoleRefBuilder().withName(role).withKind("ClusterRole").withApiGroup("rbac.authorization.k8s.io").build()).withSubjects(new SubjectBuilder().withKind("ServiceAccount").withNamespace(namespace).withName("default").build()).build();
client.rbac().clusterRoleBindings().create(clusterRoleBinding);
logger.debug("Cluster Role Binding with name {} created successfully in the namespace {}", name, namespace);
}
use of io.fabric8.kubernetes.api.model.rbac.ClusterRole in project strimzi by strimzi.
the class ClusterRoleBindingOperatorIT method getOriginal.
@Override
protected ClusterRoleBinding getOriginal() {
Subject ks = new SubjectBuilder().withKind("ServiceAccount").withName("my-service-account").withNamespace("my-namespace").build();
RoleRef roleRef = new RoleRefBuilder().withName("my-cluster-role").withApiGroup("rbac.authorization.k8s.io").withKind("ClusterRole").build();
return new ClusterRoleBindingBuilder().withNewMetadata().withName(resourceName).withLabels(singletonMap("state", "new")).endMetadata().withSubjects(ks).withRoleRef(roleRef).build();
}
use of io.fabric8.kubernetes.api.model.rbac.ClusterRole in project strimzi by strimzi.
the class ClusterRoleBindingOperatorIT method getModified.
@Override
protected ClusterRoleBinding getModified() {
Subject ks = new SubjectBuilder().withKind("ServiceAccount").withName("my-service-account2").withNamespace("my-namespace2").build();
// RoleRef cannot be changed
RoleRef roleRef = new RoleRefBuilder().withName("my-cluster-role").withApiGroup("rbac.authorization.k8s.io").withKind("ClusterRole").build();
return new ClusterRoleBindingBuilder().withNewMetadata().withName(resourceName).withLabels(singletonMap("state", "modified")).endMetadata().withSubjects(ks).withRoleRef(roleRef).build();
}
use of io.fabric8.kubernetes.api.model.rbac.ClusterRole in project strimzi by strimzi.
the class RoleBindingOperatorIT method getModified.
@Override
protected RoleBinding getModified() {
Subject ks = new SubjectBuilder().withKind("ServiceAccount").withName("my-service-account2").withNamespace("my-namespace2").build();
// RoleRef cannot be changed
RoleRef roleRef = new RoleRefBuilder().withName("my-cluster-role").withApiGroup("rbac.authorization.k8s.io").withKind("ClusterRole").build();
return new RoleBindingBuilder().withNewMetadata().withName(resourceName).withNamespace(namespace).withLabels(singletonMap("state", "modified")).endMetadata().withSubjects(ks).withRoleRef(roleRef).build();
}
Aggregations