forked from GoogleCloudPlatform/cloud-foundation-toolkit
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathKptfile
29 lines (29 loc) · 869 Bytes
/
Kptfile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
apiVersion: kpt.dev/v1alpha1
kind: Kptfile
metadata:
name: .
packageMetadata:
shortDescription: Grant an IAM role to a member for accessing a given service account
openAPI:
definitions:
io.k8s.cli.setters.service-account-name:
x-k8s-cli:
setter:
name: service-account-name
value: service-account-solution
setBy: package-default
description: The name of the new IAM service account.
io.k8s.cli.setters.iam-member:
x-k8s-cli:
setter:
name: iam-member
value: ${IAM_MEMBER?}
setBy: PLACEHOLDER
description: GCP identity to grant the role
io.k8s.cli.setters.role:
x-k8s-cli:
setter:
name: role
value: roles/iam.serviceAccountKeyAdmin
setBy: package-default
description: the IAM role to grant to the member