admin/kubesphere
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

adjust the authorization rules for workspace roles (#6329)

Browse Source 
Signed-off-by: hongming <coder.scala@gmail.com>
This commit is contained in:
hongming
2025-01-06 15:34:24 +08:00
committed by GitHub
parent a84a6892e4
commit 452d09775a
2 changed files with 11 additions and 12 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
config/ks-core/templates/builtinroles.yaml
View File

@@ -173,6 +173,8 @@ role:
iam.kubesphere.io/scope: "workspace"
templateNames:
- workspace-view-workspace-settings
- workspace-view-members
- workspace-view-roles
apiVersion: iam.kubesphere.io/v1beta1
kind: WorkspaceRole
metadata:
@@ -181,16 +183,7 @@ role:
kubesphere.io/description: '{"zh": "查看企业空间设置。", "en": "View workspace settings."}'
iam.kubesphere.io/auto-aggregate: "true"
name: regular
rules:
- apiGroups:
- '*'
resources:
- workspaces
- workspacemembers
verbs:
- get
- list
- watch
rules: []
---
apiVersion: iam.kubesphere.io/v1beta1
@@ -208,6 +201,9 @@ role:
templateNames:
- workspace-create-projects
- workspace-view-workspace-settings
- workspace-view-members
- workspace-view-roles
- workspace-view-app-repos
apiVersion: iam.kubesphere.io/v1beta1
kind: WorkspaceRole
metadata: