morhidi commented on code in PR #288:
URL:
https://github.com/apache/flink-kubernetes-operator/pull/288#discussion_r911623792
##########
helm/flink-kubernetes-operator/templates/rbac.yaml:
##########
@@ -21,23 +21,14 @@ RBAC rules used to create the operator (cluster)role based
on the scope
*/}}
{{- define "flink-operator.rbacRules" }}
rules:
- - apiGroups:
- - flink-operator
- resources:
- - "*"
- verbs:
- - "*"
- apiGroups:
- ""
resources:
- pods
- services
- - endpoints
- - persistentvolumeclaims
Review Comment:
The helm chart functionality can be extended with kustomize templates, and
PVCs could be useful to mount plugins and what not for the Operator. Although
I'm generally in favour of least privilege principle, I would probably won't
remove this one. WDYT?
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
