perm: manage nodes and daemonsets with ci

2022-05-27 12:42:10 +02:00
parent a532036457
commit bf43e01ab2
1 changed files with 3 additions and 0 deletions
--- a/ci.tf
+++ b/ci.tf
@@ -38,6 +38,7 @@ resource "kubernetes_cluster_role" "ci_cd" {
      "persistentvolumeclaims",
      "pods",
      "namespaces",
+      "nodes",
      "secrets",
      "serviceaccounts",
      "services",
@@ -48,8 +49,10 @@ resource "kubernetes_cluster_role" "ci_cd" {
  rule {
    api_groups = ["apps"]
    resources = [
+      "daemonsets",
      "deployments",
      "replicasets", # needed for 'helm upgrade --wait'
+      "statefulsets",
    ]
    verbs = ["create", "delete", "get", "list", "patch", "update", "watch"]
  }