Last active
April 27, 2017 08:15
-
-
Save NickLaMuro/e2fac8be87ea0e9f429b6f5d75e02176 to your computer and use it in GitHub Desktop.
Minishift addon for management with ManageIQ
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "apiVersion": "v1", | |
| "kind": "ClusterRole", | |
| "metadata": { | |
| "name": "hawkular-metrics-admin" | |
| }, | |
| "rules": [ | |
| { | |
| "apiGroups": [""], | |
| "resources": ["hawkular-metrics","hawkular-alerts"], | |
| "verbs": ["*"] | |
| } | |
| ] | |
| } |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Name: manageiq | |
| # Description: Basic Users, Roles, and Policies necessary to have ManageIQ/CFME connect to Openshift | |
| oc adm new-project management-infra --description="Management-Infrastructure" | |
| oc create serviceaccount management-admin -n management-infra | |
| oc create serviceaccount inspector-admin -n management-infra | |
| oc create -f management-infra-admin-cluster-role.json | |
| oc create -f hawkular-metrics-admin-cluster-role.json | |
| oc policy add-role-to-user -n management-infra admin -z management-admin | |
| oc policy add-role-to-user -n management-infra management-infra-admin -z management-admin | |
| oc adm policy add-cluster-role-to-user cluster-reader system:serviceaccount:management-infra:management-admin | |
| oc adm policy add-scc-to-user privileged system:serviceaccount:management-infra:management-admin | |
| oc adm policy add-cluster-role-to-user system:image-puller system:serviceaccount:management-infra:inspector-admin | |
| oc adm policy add-scc-to-user privileged system:serviceaccount:management-infra:inspector-admin | |
| oc adm policy add-cluster-role-to-user self-provisioner system:serviceaccount:management-infra:management-admin | |
| oc adm policy add-cluster-role-to-user hawkular-metrics-admin system:serviceaccount:management-infra:management-admin |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "apiVersion": "v1", | |
| "kind": "ClusterRole", | |
| "metadata": { | |
| "name": "management-infra-admin" | |
| }, | |
| "rules": [ | |
| {"resources": ["pods/proxy"],"verbs":["*"]} | |
| ] | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment