cri-o/vendor/k8s.io/kubernetes/cluster/addons/e2e-rbac-bindings/kubelet-binding.yaml

# The GKE environments don't have kubelets with certificates that
# identify the system:nodes group.  They use the kubelet identity
# TODO cjcullen should figure out how wants to manage his upgrade
# this will only hold the e2e tests until we get an authorizer
# which authorizes particular nodes
apiVersion: rbac.authorization.k8s.io/v1alpha1
kind: ClusterRoleBinding
metadata:
  name: kubelet-cluster-admin
  labels:
    kubernetes.io/cluster-service: "true"
roleRef:
  apiGroup: rbac.authorization.k8s.io
  kind: ClusterRole
  name: system:node
subjects:
- apiVersion: rbac/v1alpha1
  kind: User
  name: kubelet
Switch to github.com/golang/dep for vendoring Signed-off-by: Mrunal Patel <mrunalp@gmail.com> 2017-02-01 00:45:59 +00:00			`# The GKE environments don't have kubelets with certificates that`
			`# identify the system:nodes group. They use the kubelet identity`
			`# TODO cjcullen should figure out how wants to manage his upgrade`
			`# this will only hold the e2e tests until we get an authorizer`
			`# which authorizes particular nodes`
			`apiVersion: rbac.authorization.k8s.io/v1alpha1`
			`kind: ClusterRoleBinding`
			`metadata:`
			`name: kubelet-cluster-admin`
			`labels:`
			`kubernetes.io/cluster-service: "true"`
			`roleRef:`
			`apiGroup: rbac.authorization.k8s.io`
			`kind: ClusterRole`
			`name: system:node`
			`subjects:`
			`- apiVersion: rbac/v1alpha1`
			`kind: User`
			`name: kubelet`