├── .circleci └── config.yml ├── .dockerignore ├── .github ├── ISSUE_TEMPLATE │ ├── bug.yaml │ ├── feature_request.md │ └── other.md ├── dependabot.yml ├── pull_request_template.md └── workflows │ └── stale.yml ├── .gitignore ├── .goreleaser.yml ├── CODEOWNERS ├── CODE_OF_CONDUCT.md ├── DESIGN.md ├── Dockerfile ├── LICENSE ├── Makefile ├── README.md ├── ROADMAP.md ├── cmd └── manager │ └── main.go ├── deploy ├── 0_namespace.yaml ├── 1_rbac.yaml ├── 2_crd.yaml └── 3_deployment.yaml ├── docs ├── .vuepress │ ├── config-extras.js │ ├── config.js │ ├── public │ │ ├── favicon.png │ │ ├── img │ │ │ ├── fairwinds-logo.svg │ │ │ └── rbac-manager-logo.svg │ │ └── scripts │ │ │ ├── marketing.js │ │ │ └── modify.js │ ├── styles │ │ ├── index.styl │ │ └── palette.styl │ └── theme │ │ ├── index.js │ │ └── layouts │ │ └── Layout.vue ├── _config.yml ├── aks.md ├── aws.md ├── contributing │ ├── code-of-conduct.md │ └── guide.md ├── gke.md ├── introduction.md ├── package-lock.json ├── package.json ├── rbacdefinitions.md └── upgrades.md ├── e2e ├── chainsaw │ ├── .chainsaw.yaml │ ├── cluster-role-bindings │ │ ├── chainsaw-test.yaml │ │ ├── expected.yaml │ │ └── resources.yaml │ ├── deleted │ │ ├── chainsaw-test.yaml │ │ ├── expected.yaml │ │ └── resources.yaml │ └── service-accounts │ │ ├── chainsaw-test.yaml │ │ ├── expected.yaml │ │ └── resources.yaml ├── pre.sh └── test.sh ├── examples ├── rbacdefinition-everything.yaml ├── rbacdefinition-sa-imagepull.yaml └── rbacdefinition-users.yaml ├── fairwinds-insights.yaml ├── go.mod ├── go.sum ├── img └── rbac-manager-logo.svg ├── manager ├── pkg ├── apis │ ├── addtoscheme_rbacmanager_v1beta1.go │ ├── apis.go │ └── rbacmanager │ │ ├── group.go │ │ └── v1beta1 │ │ ├── doc.go │ │ ├── rbacdefinition_types.go │ │ ├── register.go │ │ └── zz_generated.deepcopy.go ├── controller │ ├── namespace.go │ ├── rbacdefinition.go │ └── shared.go ├── kube │ ├── kube.go │ └── rbacdefinitions.go ├── metrics │ ├── metrics.go │ └── metrics_test.go ├── reconciler │ ├── cases_test.go │ ├── matcher.go │ ├── matcher_test.go │ ├── parser.go │ ├── parser_test.go │ ├── reconciler.go │ └── reconciler_test.go └── watcher │ ├── clusterrolebinding.go │ ├── rolebinding.go │ ├── serviceaccount.go │ └── shared.go └── version └── version.go /.circleci/config.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/.circleci/config.yml -------------------------------------------------------------------------------- /.dockerignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/.dockerignore -------------------------------------------------------------------------------- /.github/ISSUE_TEMPLATE/bug.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/.github/ISSUE_TEMPLATE/bug.yaml -------------------------------------------------------------------------------- /.github/ISSUE_TEMPLATE/feature_request.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/.github/ISSUE_TEMPLATE/feature_request.md -------------------------------------------------------------------------------- /.github/ISSUE_TEMPLATE/other.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/.github/ISSUE_TEMPLATE/other.md -------------------------------------------------------------------------------- /.github/dependabot.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/.github/dependabot.yml -------------------------------------------------------------------------------- /.github/pull_request_template.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/.github/pull_request_template.md -------------------------------------------------------------------------------- /.github/workflows/stale.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/.github/workflows/stale.yml -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/.gitignore -------------------------------------------------------------------------------- /.goreleaser.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/.goreleaser.yml -------------------------------------------------------------------------------- /CODEOWNERS: -------------------------------------------------------------------------------- 1 | ## DO NOT EDIT - Managed by Terraform 2 | * @sudermanjr @ryanisfluffy 3 | -------------------------------------------------------------------------------- /CODE_OF_CONDUCT.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/CODE_OF_CONDUCT.md -------------------------------------------------------------------------------- /DESIGN.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/DESIGN.md -------------------------------------------------------------------------------- /Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/Dockerfile -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/LICENSE -------------------------------------------------------------------------------- /Makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/Makefile -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/README.md -------------------------------------------------------------------------------- /ROADMAP.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/ROADMAP.md -------------------------------------------------------------------------------- /cmd/manager/main.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/cmd/manager/main.go -------------------------------------------------------------------------------- /deploy/0_namespace.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/deploy/0_namespace.yaml -------------------------------------------------------------------------------- /deploy/1_rbac.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/deploy/1_rbac.yaml -------------------------------------------------------------------------------- /deploy/2_crd.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/deploy/2_crd.yaml -------------------------------------------------------------------------------- /deploy/3_deployment.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/deploy/3_deployment.yaml -------------------------------------------------------------------------------- /docs/.vuepress/config-extras.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/docs/.vuepress/config-extras.js -------------------------------------------------------------------------------- /docs/.vuepress/config.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/docs/.vuepress/config.js -------------------------------------------------------------------------------- /docs/.vuepress/public/favicon.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/docs/.vuepress/public/favicon.png -------------------------------------------------------------------------------- /docs/.vuepress/public/img/fairwinds-logo.svg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/docs/.vuepress/public/img/fairwinds-logo.svg -------------------------------------------------------------------------------- /docs/.vuepress/public/img/rbac-manager-logo.svg: -------------------------------------------------------------------------------- 1 | ../../../../img/rbac-manager-logo.svg -------------------------------------------------------------------------------- /docs/.vuepress/public/scripts/marketing.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/docs/.vuepress/public/scripts/marketing.js -------------------------------------------------------------------------------- /docs/.vuepress/public/scripts/modify.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/docs/.vuepress/public/scripts/modify.js -------------------------------------------------------------------------------- /docs/.vuepress/styles/index.styl: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/docs/.vuepress/styles/index.styl -------------------------------------------------------------------------------- /docs/.vuepress/styles/palette.styl: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/docs/.vuepress/styles/palette.styl -------------------------------------------------------------------------------- /docs/.vuepress/theme/index.js: -------------------------------------------------------------------------------- 1 | module.exports = { 2 | extend: '@vuepress/theme-default' 3 | } 4 | -------------------------------------------------------------------------------- /docs/.vuepress/theme/layouts/Layout.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/docs/.vuepress/theme/layouts/Layout.vue -------------------------------------------------------------------------------- /docs/_config.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/docs/_config.yml -------------------------------------------------------------------------------- /docs/aks.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/docs/aks.md -------------------------------------------------------------------------------- /docs/aws.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/docs/aws.md -------------------------------------------------------------------------------- /docs/contributing/code-of-conduct.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/docs/contributing/code-of-conduct.md -------------------------------------------------------------------------------- /docs/contributing/guide.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/docs/contributing/guide.md -------------------------------------------------------------------------------- /docs/gke.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/docs/gke.md -------------------------------------------------------------------------------- /docs/introduction.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/docs/introduction.md -------------------------------------------------------------------------------- /docs/package-lock.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/docs/package-lock.json -------------------------------------------------------------------------------- /docs/package.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/docs/package.json -------------------------------------------------------------------------------- /docs/rbacdefinitions.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/docs/rbacdefinitions.md -------------------------------------------------------------------------------- /docs/upgrades.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/docs/upgrades.md -------------------------------------------------------------------------------- /e2e/chainsaw/.chainsaw.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/e2e/chainsaw/.chainsaw.yaml -------------------------------------------------------------------------------- /e2e/chainsaw/cluster-role-bindings/chainsaw-test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/e2e/chainsaw/cluster-role-bindings/chainsaw-test.yaml -------------------------------------------------------------------------------- /e2e/chainsaw/cluster-role-bindings/expected.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/e2e/chainsaw/cluster-role-bindings/expected.yaml -------------------------------------------------------------------------------- /e2e/chainsaw/cluster-role-bindings/resources.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/e2e/chainsaw/cluster-role-bindings/resources.yaml -------------------------------------------------------------------------------- /e2e/chainsaw/deleted/chainsaw-test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/e2e/chainsaw/deleted/chainsaw-test.yaml -------------------------------------------------------------------------------- /e2e/chainsaw/deleted/expected.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/e2e/chainsaw/deleted/expected.yaml -------------------------------------------------------------------------------- /e2e/chainsaw/deleted/resources.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/e2e/chainsaw/deleted/resources.yaml -------------------------------------------------------------------------------- /e2e/chainsaw/service-accounts/chainsaw-test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/e2e/chainsaw/service-accounts/chainsaw-test.yaml -------------------------------------------------------------------------------- /e2e/chainsaw/service-accounts/expected.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/e2e/chainsaw/service-accounts/expected.yaml -------------------------------------------------------------------------------- /e2e/chainsaw/service-accounts/resources.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/e2e/chainsaw/service-accounts/resources.yaml -------------------------------------------------------------------------------- /e2e/pre.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/e2e/pre.sh -------------------------------------------------------------------------------- /e2e/test.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/e2e/test.sh -------------------------------------------------------------------------------- /examples/rbacdefinition-everything.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/examples/rbacdefinition-everything.yaml -------------------------------------------------------------------------------- /examples/rbacdefinition-sa-imagepull.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/examples/rbacdefinition-sa-imagepull.yaml -------------------------------------------------------------------------------- /examples/rbacdefinition-users.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/examples/rbacdefinition-users.yaml -------------------------------------------------------------------------------- /fairwinds-insights.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/fairwinds-insights.yaml -------------------------------------------------------------------------------- /go.mod: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/go.mod -------------------------------------------------------------------------------- /go.sum: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/go.sum -------------------------------------------------------------------------------- /img/rbac-manager-logo.svg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/img/rbac-manager-logo.svg -------------------------------------------------------------------------------- /manager: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/manager -------------------------------------------------------------------------------- /pkg/apis/addtoscheme_rbacmanager_v1beta1.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/pkg/apis/addtoscheme_rbacmanager_v1beta1.go -------------------------------------------------------------------------------- /pkg/apis/apis.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/pkg/apis/apis.go -------------------------------------------------------------------------------- /pkg/apis/rbacmanager/group.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/pkg/apis/rbacmanager/group.go -------------------------------------------------------------------------------- /pkg/apis/rbacmanager/v1beta1/doc.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/pkg/apis/rbacmanager/v1beta1/doc.go -------------------------------------------------------------------------------- /pkg/apis/rbacmanager/v1beta1/rbacdefinition_types.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/pkg/apis/rbacmanager/v1beta1/rbacdefinition_types.go -------------------------------------------------------------------------------- /pkg/apis/rbacmanager/v1beta1/register.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/pkg/apis/rbacmanager/v1beta1/register.go -------------------------------------------------------------------------------- /pkg/apis/rbacmanager/v1beta1/zz_generated.deepcopy.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/pkg/apis/rbacmanager/v1beta1/zz_generated.deepcopy.go -------------------------------------------------------------------------------- /pkg/controller/namespace.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/pkg/controller/namespace.go -------------------------------------------------------------------------------- /pkg/controller/rbacdefinition.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/pkg/controller/rbacdefinition.go -------------------------------------------------------------------------------- /pkg/controller/shared.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/pkg/controller/shared.go -------------------------------------------------------------------------------- /pkg/kube/kube.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/pkg/kube/kube.go -------------------------------------------------------------------------------- /pkg/kube/rbacdefinitions.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/pkg/kube/rbacdefinitions.go -------------------------------------------------------------------------------- /pkg/metrics/metrics.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/pkg/metrics/metrics.go -------------------------------------------------------------------------------- /pkg/metrics/metrics_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/pkg/metrics/metrics_test.go -------------------------------------------------------------------------------- /pkg/reconciler/cases_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/pkg/reconciler/cases_test.go -------------------------------------------------------------------------------- /pkg/reconciler/matcher.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/pkg/reconciler/matcher.go -------------------------------------------------------------------------------- /pkg/reconciler/matcher_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/pkg/reconciler/matcher_test.go -------------------------------------------------------------------------------- /pkg/reconciler/parser.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/pkg/reconciler/parser.go -------------------------------------------------------------------------------- /pkg/reconciler/parser_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/pkg/reconciler/parser_test.go -------------------------------------------------------------------------------- /pkg/reconciler/reconciler.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/pkg/reconciler/reconciler.go -------------------------------------------------------------------------------- /pkg/reconciler/reconciler_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/pkg/reconciler/reconciler_test.go -------------------------------------------------------------------------------- /pkg/watcher/clusterrolebinding.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/pkg/watcher/clusterrolebinding.go -------------------------------------------------------------------------------- /pkg/watcher/rolebinding.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/pkg/watcher/rolebinding.go -------------------------------------------------------------------------------- /pkg/watcher/serviceaccount.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/pkg/watcher/serviceaccount.go -------------------------------------------------------------------------------- /pkg/watcher/shared.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/pkg/watcher/shared.go -------------------------------------------------------------------------------- /version/version.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/FairwindsOps/rbac-manager/HEAD/version/version.go --------------------------------------------------------------------------------