Merge pull request #18 from aroraharsh23/manual_rbac

updated rbac

Author: subashd

deploy/citrix-k8s-node-controller.yaml

@@ -46,6 +46,42 @@ metadata:
   name: citrix-node-controller
   namespace: default
 ---
+kind: ClusterRole
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: kube-cnc-router
+rules:
+  - apiGroups: ["*"]
+    resources: ["configmaps"]
+    verbs: ["get", "list", "watch", "create", "patch", "delete", "update"]
+  - apiGroups: [""]
+    resources: ["configmaps"]
+    verbs: ["get", "list", "watch", "create", "patch", "delete", "update"]
+  - apiGroups: ["crd.projectcalico.org"]
+    resources: ["ipamblocks"]
+    verbs: ["get", "list"]
+---
+kind: ClusterRoleBinding
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: kube-cnc-router
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: kube-cnc-router
+subjects:
+- kind: ServiceAccount
+  name: kube-cnc-router
+  namespace: kube-system
+apiVersion: rbac.authorization.k8s.io/v1
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: kube-cnc-router
+  namespace: kube-system
+
+---
 apiVersion: apps/v1
 kind: Deployment
 metadata: