Skip to content
This repository has been archived by the owner on Nov 7, 2019. It is now read-only.

Use Codegen to Generate the Permissions for the Service Role #78

Open
christopherhein opened this issue Sep 29, 2018 · 0 comments
Open

Use Codegen to Generate the Permissions for the Service Role #78

christopherhein opened this issue Sep 29, 2018 · 0 comments
Labels
code-generation Code generation library kind/security Security features and functions operator/iampolicy IAM Policy operator package

Comments

@christopherhein
Copy link
Contributor

As of #77 we have support for deploying a service role that give the operator assess to create resources, this is to make it so the model files can declare what permissions are necessary for the project.

spec:
  iamPolicies:
    - s3:*
    #- s3:PutObject

This would give us the ability to specify these during the model creation in the codegen project this would collect all these policies and regenerate configs/aws-service-operator-role.yaml
@christopherhein christopherhein added code-generation Code generation library operator/iampolicy IAM Policy operator package kind/security Security features and functions labels Sep 29, 2018
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
code-generation Code generation library kind/security Security features and functions operator/iampolicy IAM Policy operator package
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@christopherhein