bakery-ia/infrastructure/cicd/tekton-helm/templates/rolebindings.yaml

# ClusterRoleBinding for Tekton Triggers
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
  name: tekton-triggers-binding
  labels:
    app.kubernetes.io/name: {{ .Values.labels.app.name }}
    app.kubernetes.io/component: triggers
subjects:
  - kind: ServiceAccount
    name: {{ .Values.serviceAccounts.triggers.name }}
    namespace: {{ .Values.namespace }}
roleRef:
  kind: ClusterRole
  name: tekton-triggers-role
  apiGroup: rbac.authorization.k8s.io
---
# ClusterRoleBinding for Pipeline execution
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
  name: tekton-pipeline-binding
  labels:
    app.kubernetes.io/name: {{ .Values.labels.app.name }}
    app.kubernetes.io/component: pipeline
subjects:
  - kind: ServiceAccount
    name: {{ .Values.serviceAccounts.pipeline.name }}
    namespace: {{ .Values.namespace }}
roleRef:
  kind: ClusterRole
  name: tekton-pipeline-role
  apiGroup: rbac.authorization.k8s.io
---
# RoleBinding for EventListener
apiVersion: rbac.authorization.k8s.io/v1
kind: RoleBinding
metadata:
  name: tekton-triggers-eventlistener-binding
  namespace: {{ .Values.namespace }}
  labels:
    app.kubernetes.io/name: {{ .Values.labels.app.name }}
    app.kubernetes.io/component: triggers
subjects:
  - kind: ServiceAccount
    name: {{ .Values.serviceAccounts.triggers.name }}
    namespace: {{ .Values.namespace }}
roleRef:
  kind: Role
  name: tekton-triggers-eventlistener-role
  apiGroup: rbac.authorization.k8s.io
Add new infra architecture 3 2026-01-19 13:57:50 +01:00			`# ClusterRoleBinding for Tekton Triggers`
			`apiVersion: rbac.authorization.k8s.io/v1`
			`kind: ClusterRoleBinding`
			`metadata:`
			`name: tekton-triggers-binding`
			`labels:`
			`app.kubernetes.io/name: {{ .Values.labels.app.name }}`
			`app.kubernetes.io/component: triggers`
			`subjects:`
			`- kind: ServiceAccount`
			`name: {{ .Values.serviceAccounts.triggers.name }}`
			`namespace: {{ .Values.namespace }}`
			`roleRef:`
			`kind: ClusterRole`
			`name: tekton-triggers-role`
			`apiGroup: rbac.authorization.k8s.io`
			`---`
			`# ClusterRoleBinding for Pipeline execution`
			`apiVersion: rbac.authorization.k8s.io/v1`
			`kind: ClusterRoleBinding`
			`metadata:`
			`name: tekton-pipeline-binding`
			`labels:`
			`app.kubernetes.io/name: {{ .Values.labels.app.name }}`
			`app.kubernetes.io/component: pipeline`
			`subjects:`
			`- kind: ServiceAccount`
			`name: {{ .Values.serviceAccounts.pipeline.name }}`
			`namespace: {{ .Values.namespace }}`
			`roleRef:`
			`kind: ClusterRole`
			`name: tekton-pipeline-role`
			`apiGroup: rbac.authorization.k8s.io`
			`---`
			`# RoleBinding for EventListener`
			`apiVersion: rbac.authorization.k8s.io/v1`
			`kind: RoleBinding`
			`metadata:`
			`name: tekton-triggers-eventlistener-binding`
			`namespace: {{ .Values.namespace }}`
			`labels:`
			`app.kubernetes.io/name: {{ .Values.labels.app.name }}`
			`app.kubernetes.io/component: triggers`
			`subjects:`
			`- kind: ServiceAccount`
			`name: {{ .Values.serviceAccounts.triggers.name }}`
			`namespace: {{ .Values.namespace }}`
			`roleRef:`
			`kind: Role`
			`name: tekton-triggers-eventlistener-role`
			`apiGroup: rbac.authorization.k8s.io`