Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Document the spec.hubTemplateOptions.serviceAccountName field #239

Merged
merged 1 commit into from
Sep 17, 2024
Merged

Document the spec.hubTemplateOptions.serviceAccountName field #239

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
4 changes: 4 additions & 0 deletions api/v1/policy_types.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -67,6 +67,10 @@ type PolicyDependency struct {
}

type HubTemplateOptions struct {
// ServiceAccountName is the name of a service account in the same namespace as the policy to use for all hub
// template lookups. The service account must have list and watch permissions on any object the hub templates
// look up. If not specified, lookups are restricted to namespaced objects in the same namespace as the policy and
// to the `ManagedCluster` object associated with the propagated policy.
ServiceAccountName string `json:"serviceAccountName,omitempty"`
}

Expand Down
5 changes: 5 additions & 0 deletions deploy/crds/kustomize/policy.open-cluster-management.io_policies.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -122,6 +122,11 @@ spec:
templates.
properties:
serviceAccountName:
description: |-
ServiceAccountName is the name of a service account in the same namespace as the policy to use for all hub
template lookups. The service account must have list and watch permissions on any object the hub templates
look up. If not specified, lookups are restricted to namespaced objects in the same namespace as the policy and
to the `ManagedCluster` object associated with the propagated policy.
type: string
type: object
policy-templates:
Expand Down
5 changes: 5 additions & 0 deletions deploy/crds/policy.open-cluster-management.io_policies.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -134,6 +134,11 @@ spec:
templates.
properties:
serviceAccountName:
description: >-
ServiceAccountName is the name of a service account in the same namespace as the policy to use for all hub
template lookups. The service account must have list and watch permissions on any object the hub templates
look up. If not specified, lookups are restricted to namespaced objects in the same namespace as the policy and
to the `ManagedCluster` object associated with the propagated policy.
type: string
type: object
policy-templates:
Expand Down