platform/manifests
1
1
Fork 0
Code Issues 7 Pull Requests 6 Actions Packages Projects Releases Wiki Activity

fix: generate petimeter-acl via kustomization

Browse Source
This commit is contained in:
Jonas Juselius
2024-02-15 20:51:05 +01:00
parent 3afe9d7051
commit f775d01ec4
5 changed files with 230 additions and 227 deletions
Download Patch File Download Diff File Expand all files Collapse all files
applications/petimeter.yaml
+3
View File
@@ -37,6 +37,9 @@ spec:
string: '{{ .env }}'
- name: hostname
string: '{{ .hostname }}'
- repoURL: https://gitlab.com/oceanbox/manifests.git
targetRevision: dev
path: charts/petimeter/manifests
templatePatch: |
{{- if .autoSync }}
spec:
charts/petimeter/base/deployment_patch.yaml
+1 -1
View File
@@ -16,4 +16,4 @@
value:
name: acl
configMap:
name: prod-petimeter-acl
name: petimeter-acl
charts/petimeter/manifests/acl.json
+220
View File
@@ -0,0 +1,220 @@
[
{
"domain": "oceanbox.io",
"access": [
{
"matching": ".*@oceanbox.io",
"group": "/oceanbox",
"roles": [ "admin" ],
"capabilities": [
"run:*"
]
}
]
},
{
"domain": "salmar.no",
"access": [
{
"matching": ".*@salmar.no",
"group": "/salmar",
"roles": [ "user" ],
"capabilities": [
"run:transport",
"run:sedimentation"
]
}
]
},
{
"domain": "leroy.no",
"access": [
{
"matching": "karstein@leroy.no",
"group": "/oceanbox",
"roles": [ "admin" ],
"capabilities": [ "run:*" ]
},
{
"matching": ".*@leroy.no",
"group": "/leroy",
"roles": [ "user" ],
"capabilities": []
}
]
},
{
"domain": "serit.no",
"access": [
{
"matching": ".*@tromso.serit.no",
"group": "/oceanbox",
"roles": [ "admin" ],
"capabilities": []
}
]
},
{
"domain": "aqua-kompetanse.no",
"access": [
{
"matching": ".*@aqua-kompetanse.no",
"group": "/aqua-kompetanse",
"roles": [ "user" ],
"capabilities": [
"run:transport",
"run:sedimentation"
]
}
]
},
{
"domain": "kelpinor.no",
"access": [
{
"matching": ".*@kelpinor.no",
"group": "/kelpinor",
"roles": [ "user" ],
"capabilities": [
"run:transport",
"run:sedimentation"
]
}
]
},
{
"domain": "bkmanimalhealth.com",
"access": [
{
"matching": ".*@bkmanimalhealth.com",
"group": "/bkmanimalhealth",
"roles": [ "user" ],
"capabilities": [
"run:transport",
"run:sedimentation"
]
}
]
},
{
"domain": "uio.no",
"access": [
{
"matching": ".*@geo.uio.no",
"group": "/demo",
"roles": [ "user" ],
"capabilities": [
"run:transport",
"run:sedimentation"
]
}
]
},
{
"domain": "nord.no",
"access": [
{
"matching": ".*@.*.nord.no",
"group": "/uni-nord",
"roles": [ "user" ],
"capabilities": [
"run:transport",
"run:sedimentation"
]
}
]
},
{
"domain": "argusmiljo.no",
"access": [
{
"matching": ".*@argusmiljo.no",
"group": "/argusmiljo",
"roles": [ "user" ],
"capabilities": [
"run:transport",
"run:sedimentation"
]
}
]
},
{
"domain": "bakkafrost.com",
"access": [
{
"matching": ".*@bakkafrost.com",
"group": "/bakkafrost",
"roles": [ "user" ],
"capabilities": [
"run:transport",
"run:sedimentation"
]
}
]
},
{
"domain": "multiconsult.no",
"access": [
{
"matching": ".*@multiconsult.no",
"group": "/multiconsult",
"roles": [ "user" ],
"capabilities": [
"run:transport",
"run:sedimentation"
]
}
]
},
{
"domain": "kpmg.no",
"access": [
{
"matching": ".*@kpmg.no",
"group": "/kpmg",
"roles": [ "user" ],
"capabilities": [
"run:transport",
"run:sedimentation"
]
}
]
},
{
"domain": "synfaring.no",
"access": [
{
"matching": ".*@synfaring.no",
"group": "/synfaring",
"roles": [ "user" ],
"capabilities": [
"run:transport",
"run:sedimentation"
]
}
]
},
{
"domain": "gmail.com",
"access": [
{
"matching": "jonas.juselius@gmail.com",
"group": "/bakkafrost",
"roles": [ "user" ],
"capabilities": [
"run:transport",
"run:sedimentation"
]
},
{
"matching": ".*@gmail.com",
"group": "/demo",
"roles": [ "user" ],
"capabilities": [
"run:transport",
"run:sedimentation"
]
}
]
}
]
charts/petimeter/manifests/acl.yaml
-226
View File
@@ -1,226 +0,0 @@
apiVersion: v1
kind: ConfigMap
metadata:
name: petimeter-acl
data:
acl.json: |-
[
{
"domain": "oceanbox.io",
"access": [
{
"matching": ".*@oceanbox.io",
"group": "/oceanbox",
"roles": [ "admin" ],
"capabilities": [
"run:*"
]
}
]
},
{
"domain": "salmar.no",
"access": [
{
"matching": ".*@salmar.no",
"group": "/salmar",
"roles": [ "user" ],
"capabilities": [
"run:transport",
"run:sedimentation"
]
}
]
},
{
"domain": "leroy.no",
"access": [
{
"matching": "karstein@leroy.no",
"group": "/oceanbox",
"roles": [ "admin" ],
"capabilities": [ "run:*" ]
},
{
"matching": ".*@leroy.no",
"group": "/leroy",
"roles": [ "user" ],
"capabilities": []
}
]
},
{
"domain": "serit.no",
"access": [
{
"matching": ".*@tromso.serit.no",
"group": "/oceanbox",
"roles": [ "admin" ],
"capabilities": []
}
]
},
{
"domain": "aqua-kompetanse.no",
"access": [
{
"matching": ".*@aqua-kompetanse.no",
"group": "/aqua-kompetanse",
"roles": [ "user" ],
"capabilities": [
"run:transport",
"run:sedimentation"
]
}
]
},
{
"domain": "kelpinor.no",
"access": [
{
"matching": ".*@kelpinor.no",
"group": "/kelpinor",
"roles": [ "user" ],
"capabilities": [
"run:transport",
"run:sedimentation"
]
}
]
},
{
"domain": "bkmanimalhealth.com",
"access": [
{
"matching": ".*@bkmanimalhealth.com",
"group": "/bkmanimalhealth",
"roles": [ "user" ],
"capabilities": [
"run:transport",
"run:sedimentation"
]
}
]
},
{
"domain": "uio.no",
"access": [
{
"matching": ".*@geo.uio.no",
"group": "/demo",
"roles": [ "user" ],
"capabilities": [
"run:transport",
"run:sedimentation"
]
}
]
},
{
"domain": "nord.no",
"access": [
{
"matching": ".*@.*.nord.no",
"group": "/uni-nord",
"roles": [ "user" ],
"capabilities": [
"run:transport",
"run:sedimentation"
]
}
]
},
{
"domain": "argusmiljo.no",
"access": [
{
"matching": ".*@argusmiljo.no",
"group": "/argusmiljo",
"roles": [ "user" ],
"capabilities": [
"run:transport",
"run:sedimentation"
]
}
]
},
{
"domain": "bakkafrost.com",
"access": [
{
"matching": ".*@bakkafrost.com",
"group": "/bakkafrost",
"roles": [ "user" ],
"capabilities": [
"run:transport",
"run:sedimentation"
]
}
]
},
{
"domain": "multiconsult.no",
"access": [
{
"matching": ".*@multiconsult.no",
"group": "/multiconsult",
"roles": [ "user" ],
"capabilities": [
"run:transport",
"run:sedimentation"
]
}
]
},
{
"domain": "kpmg.no",
"access": [
{
"matching": ".*@kpmg.no",
"group": "/kpmg",
"roles": [ "user" ],
"capabilities": [
"run:transport",
"run:sedimentation"
]
}
]
},
{
"domain": "synfaring.no",
"access": [
{
"matching": ".*@synfaring.no",
"group": "/synfaring",
"roles": [ "user" ],
"capabilities": [
"run:transport",
"run:sedimentation"
]
}
]
},
{
"domain": "gmail.com",
"access": [
{
"matching": "jonas.juselius@gmail.com",
"group": "/bakkafrost",
"roles": [ "user" ],
"capabilities": [
"run:transport",
"run:sedimentation"
]
},
{
"matching": ".*@gmail.com",
"group": "/demo",
"roles": [ "user" ],
"capabilities": [
"run:transport",
"run:sedimentation"
]
}
]
}
]
charts/petimeter/manifests/kustomization.yaml
+6
View File
@@ -0,0 +1,6 @@
generatorOptions:
disableNameSuffixHash: true
configmapGenerator:
- name: petimeter-acl
files:
- acl.json