scottk/terraform-talos
1
0
Fork 0
mirror of https://github.com/optim-enterprises-bv/terraform-talos.git synced 2025-11-01 02:38:31 +00:00
Code Issues Packages Projects Releases Wiki Activity

Permission based on tags

Browse Source
This commit is contained in:
Serge Logvinov
2022-01-06 22:59:01 +02:00
parent b74ab73aba
commit 36b55101a3
2 changed files with 2 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
oracle/init/account.tf
View File

@@ -56,5 +56,5 @@ resource "oci_identity_dynamic_group" "ccm" {
compartment_id = var.tenancy_ocid compartment_id = var.tenancy_ocid
name = "oci-ccm" name = "oci-ccm"
description = "dynamic group created by terraform for oci-cloud-controller-manager" description = "dynamic group created by terraform for oci-cloud-controller-manager"
matching_rule = "ANY {instance.compartment.id = '${oci_identity_compartment.project.id}'}" matching_rule = "ALL {instance.compartment.id = '${oci_identity_compartment.project.id}', tag.Kubernetes.Role.value = 'contolplane'}"
} }

1
oracle/templates/controlplane.yaml.tpl
View File

@@ -72,5 +72,6 @@ cluster:
enabled: true enabled: true
manifests: manifests:
- https://raw.githubusercontent.com/sergelogvinov/terraform-talos/main/oracle/deployments/oci-cloud-controller-manager.yaml - https://raw.githubusercontent.com/sergelogvinov/terraform-talos/main/oracle/deployments/oci-cloud-controller-manager.yaml
- https://raw.githubusercontent.com/sergelogvinov/terraform-talos/main/oracle/deployments/kubelet-serving-cert-approver.yaml
- https://raw.githubusercontent.com/sergelogvinov/terraform-talos/main/oracle/deployments/metrics-server.yaml - https://raw.githubusercontent.com/sergelogvinov/terraform-talos/main/oracle/deployments/metrics-server.yaml
- https://raw.githubusercontent.com/sergelogvinov/terraform-talos/main/oracle/deployments/local-path-storage.yaml - https://raw.githubusercontent.com/sergelogvinov/terraform-talos/main/oracle/deployments/local-path-storage.yaml