Created
August 16, 2018 21:53
-
-
Save noelbundick/7799d7dfe76745a4fdd31b0f8563a858 to your computer and use it in GitHub Desktop.
k8s Azure Cloud Provider permissions
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "Name": "Azure k8s Cloud Provider", | |
| "IsCustom": true, | |
| "Description": "Everything needed by the k8s 1.11 Azure cloud provider (not including ACR, addons, etc)", | |
| "Actions": [ | |
| "Microsoft.Compute/disks/delete", | |
| "Microsoft.Compute/disks/read", | |
| "Microsoft.Compute/disks/write", | |
| "Microsoft.Compute/virtualMachineScaleSets/manualUpgrade/action", | |
| "Microsoft.Compute/virtualMachineScaleSets/read", | |
| "Microsoft.Compute/virtualMachineScaleSets/virtualMachines/networkInterfaces/read", | |
| "Microsoft.Compute/virtualMachineScaleSets/virtualMachines/read", | |
| "Microsoft.Compute/virtualMachineScaleSets/virtualMachines/write", | |
| "Microsoft.Compute/virtualMachineScaleSets/write", | |
| "Microsoft.Compute/virtualMachines/read", | |
| "Microsoft.Compute/virtualMachines/write", | |
| "Microsoft.Network/loadBalancers/write", | |
| "Microsoft.Network/loadBalancers/backendAddressPools/join/action", | |
| "Microsoft.Network/loadBalancers/delete", | |
| "Microsoft.Network/loadBalancers/read", | |
| "Microsoft.Network/networkInterfaces/join/action", | |
| "Microsoft.Network/networkInterfaces/read", | |
| "Microsoft.Network/networkInterfaces/write", | |
| "Microsoft.Network/networkSecurityGroups/read", | |
| "Microsoft.Network/networkSecurityGroups/write", | |
| "Microsoft.Network/publicIPAddresses/delete", | |
| "Microsoft.Network/publicIPAddresses/join/action", | |
| "Microsoft.Network/publicIPAddresses/read", | |
| "Microsoft.Network/publicIPAddresses/write", | |
| "Microsoft.Network/routeTables/read", | |
| "Microsoft.Network/routeTables/routes/delete", | |
| "Microsoft.Network/routeTables/routes/write", | |
| "Microsoft.Network/routeTables/write", | |
| "Microsoft.Network/virtualNetworks/subnets/join/action", | |
| "Microsoft.Network/virtualNetworks/subnets/read", | |
| "Microsoft.Storage/storageAccounts/listKeys/action", | |
| "Microsoft.Storage/storageAccounts/read", | |
| "Microsoft.Storage/storageAccounts/write" | |
| ], | |
| "NotActions": [], | |
| "DataActions": [], | |
| "NotDataActions": [], | |
| "AssignableScopes": [ | |
| "/subscriptions/<SUB-ID>" | |
| ] | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment