1 {{- if and .Values.rbac.enabled .Values.prometheusMetrics.enabled .Values.prometheusMetrics.authProxy.enabled }}
5 name: {{ include "istio-operator.fullname" . }}-authproxy
7 app.kubernetes.io/name: {{ include "istio-operator.name" . }}
8 helm.sh/chart: {{ include "istio-operator.chart" . }}
9 app.kubernetes.io/instance: {{ .Release.Name }}
10 app.kubernetes.io/managed-by: {{ .Release.Service }}
11 app.kubernetes.io/version: {{ .Chart.AppVersion }}
12 app.kubernetes.io/component: authproxy
14 apiVersion: rbac.authorization.k8s.io/v1
17 name: "{{ include "istio-operator.fullname" . }}-authproxy"
19 app.kubernetes.io/name: {{ include "istio-operator.name" . }}
20 helm.sh/chart: {{ include "istio-operator.chart" . }}
21 app.kubernetes.io/instance: {{ .Release.Name }}
22 app.kubernetes.io/managed-by: {{ .Release.Service }}
23 app.kubernetes.io/version: {{ .Chart.AppVersion }}
24 app.kubernetes.io/component: authproxy
26 - apiGroups: ["authentication.k8s.io"]
30 - apiGroups: ["authorization.k8s.io"]
32 - subjectaccessreviews
35 apiVersion: rbac.authorization.k8s.io/v1
36 kind: ClusterRoleBinding
38 name: "{{ include "istio-operator.fullname" . }}-authproxy"
40 app.kubernetes.io/name: {{ include "istio-operator.name" . }}
41 helm.sh/chart: {{ include "istio-operator.chart" . }}
42 app.kubernetes.io/instance: {{ .Release.Name }}
43 app.kubernetes.io/managed-by: {{ .Release.Service }}
44 app.kubernetes.io/version: {{ .Chart.AppVersion }}
45 app.kubernetes.io/component: authproxy
47 apiGroup: rbac.authorization.k8s.io
49 name: "{{ include "istio-operator.fullname" . }}-authproxy"
51 - kind: ServiceAccount
52 name: {{ include "istio-operator.fullname" . }}-authproxy
53 namespace: {{ .Release.Namespace }}