Skip to content

Commit

Permalink
Merge pull request #16219 from ameukam/servicelinkrole-elasticlb
Browse files Browse the repository at this point in the history 
Add permission needed for service-linked role creation
  • Loading branch information
@k8s-ci-robot
k8s-ci-robot committed Jan 5, 2024
2 parents 57b457c + 282ae13 commit 1202209
Show file tree
Hide file tree
Showing 71 changed files with 72 additions and 1 deletion.
3 changes: 2 additions & 1 deletion pkg/model/iam/iam_builder.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -831,6 +831,7 @@ func AddCCMPermissions(p *Policy, cloudRoutes bool) {
"elasticloadbalancing:DescribeLoadBalancerPolicies",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"kms:DescribeKey",
)

Expand Down Expand Up @@ -884,7 +885,7 @@ func AddCCMPermissions(p *Policy, cloudRoutes bool) {
}
}

// AddAWSLoadbalancerControllerPermissions adds the permissions needed for the AWS Load Balancer Controller to the givnen policy
// AddAWSLoadbalancerControllerPermissions adds the permissions needed for the AWS Load Balancer Controller to the given policy
func AddAWSLoadbalancerControllerPermissions(p *Policy, enableWAF, enableWAFv2, enableShield bool) {
p.unconditionalAction.Insert(
"cognito-idp:DescribeUserPoolClient",
Expand Down
1 change: 1 addition & 0 deletions pkg/model/iam/tests/iam_builder_master_gossip.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -127,6 +127,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions pkg/model/iam/tests/iam_builder_master_gossip_ecr.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -134,6 +134,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions pkg/model/iam/tests/iam_builder_master_strict.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -127,6 +127,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions pkg/model/iam/tests/iam_builder_master_strict_ecr.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -134,6 +134,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...r/additionalobjects/data/aws_iam_role_policy_masters.additionalobjects.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -196,6 +196,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...update_cluster/apiservernodes/data/aws_iam_role_policy_masters.minimal.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -189,6 +189,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...ws_iam_role_policy_aws-cloud-controller-manager.kube-system.sa.minimal.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -50,6 +50,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"kms:DescribeKey"
],
"Effect": "Allow",
Expand Down
1 change: 1 addition & 0 deletions ...nadditional_user-data/data/aws_iam_role_policy_masters.bastionuserdata.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -189,6 +189,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...r-custom/data/aws_iam_role_policy_masters.cas-priority-expander-custom.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -189,6 +189,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...iority-expander/data/aws_iam_role_policy_masters.cas-priority-expander.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -189,6 +189,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...ration/update_cluster/complex/data/aws_iam_role_policy_masters.complex.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -189,6 +189,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...tion/update_cluster/compress/data/aws_iam_role_policy_masters.compress.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -189,6 +189,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ..._cluster/containerd-custom/data/aws_iam_role_policy_masters.containerd.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -189,6 +189,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions .../update_cluster/containerd/data/aws_iam_role_policy_masters.containerd.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -189,6 +189,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions .../integration/update_cluster/digit/data/aws_iam_role_policy_masters.123.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -189,6 +189,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...update_cluster/existing_sg/data/aws_iam_role_policy_masters.existingsg.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -189,6 +189,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...n/update_cluster/external_dns/data/aws_iam_role_policy_masters.minimal.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -189,6 +189,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...ws_iam_role_policy_aws-cloud-controller-manager.kube-system.sa.minimal.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -50,6 +50,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"kms:DescribeKey"
],
"Effect": "Allow",
Expand Down
1 change: 1 addition & 0 deletions .../update_cluster/externallb/data/aws_iam_role_policy_masters.externallb.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -189,6 +189,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...ter/externalpolicies/data/aws_iam_role_policy_masters.externalpolicies.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -189,6 +189,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions tests/integration/update_cluster/ha/data/aws_iam_role_policy_masters.ha.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -189,6 +189,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...tegration/update_cluster/irsa/data/aws_iam_role_policy_masters.minimal.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -189,6 +189,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...ws_iam_role_policy_aws-cloud-controller-manager.kube-system.sa.minimal.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -50,6 +50,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"kms:DescribeKey"
],
"Effect": "Allow",
Expand Down
1 change: 1 addition & 0 deletions ...ws_iam_role_policy_aws-cloud-controller-manager.kube-system.sa.minimal.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -50,6 +50,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"kms:DescribeKey"
],
"Effect": "Allow",
Expand Down
1 change: 1 addition & 0 deletions ...ws_iam_role_policy_aws-cloud-controller-manager.kube-system.sa.minimal.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -50,6 +50,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"kms:DescribeKey"
],
"Effect": "Allow",
Expand Down
1 change: 1 addition & 0 deletions ...ws_iam_role_policy_aws-cloud-controller-manager.kube-system.sa.minimal.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -50,6 +50,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"kms:DescribeKey"
],
"Effect": "Allow",
Expand Down
1 change: 1 addition & 0 deletions ...ws_iam_role_policy_aws-cloud-controller-manager.kube-system.sa.minimal.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -50,6 +50,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"kms:DescribeKey"
],
"Effect": "Allow",
Expand Down
1 change: 1 addition & 0 deletions ...pdate_cluster/many-addons-ccm/data/aws_iam_role_policy_masters.minimal.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -250,6 +250,7 @@
"elasticloadbalancing:DescribeTargetGroupAttributes",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...pdate_cluster/many-addons/data/aws_iam_role_policy_masters.many-addons.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -250,6 +250,7 @@
"elasticloadbalancing:DescribeTargetGroupAttributes",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...n/update_cluster/minimal-1.24/data/aws_iam_role_policy_masters.minimal.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -196,6 +196,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...n/update_cluster/minimal-1.25/data/aws_iam_role_policy_masters.minimal.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -196,6 +196,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...n/update_cluster/minimal-1.26/data/aws_iam_role_policy_masters.minimal.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -196,6 +196,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...n/update_cluster/minimal-1.27/data/aws_iam_role_policy_masters.minimal.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -196,6 +196,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...n/update_cluster/minimal-1.28/data/aws_iam_role_policy_masters.minimal.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -196,6 +196,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...n/update_cluster/minimal-1.29/data/aws_iam_role_policy_masters.minimal.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -196,6 +196,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...pdate_cluster/minimal-aws/data/aws_iam_role_policy_masters.minimal-aws.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -189,6 +189,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...date_cluster/minimal-dns-none/data/aws_iam_role_policy_masters.minimal.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -166,6 +166,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...ate_cluster/minimal-etcd/data/aws_iam_role_policy_masters.minimal-etcd.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -189,6 +189,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...on/update_cluster/minimal-gp3/data/aws_iam_role_policy_masters.minimal.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -189,6 +189,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...ster/minimal-ipv6-calico/data/aws_iam_role_policy_masters.minimal-ipv6.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -191,6 +191,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...ster/minimal-ipv6-cilium/data/aws_iam_role_policy_masters.minimal-ipv6.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -191,6 +191,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...al-ipv6-no-subnet-prefix/data/aws_iam_role_policy_masters.minimal-ipv6.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -191,6 +191,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...ate_cluster/minimal-ipv6/data/aws_iam_role_policy_masters.minimal-ipv6.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -191,6 +191,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...s_iam_role_policy_masters.this.is.truly.a.really.really.long.cluster-name.m-kaamp9_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -189,6 +189,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...ter/minimal-warmpool/data/aws_iam_role_policy_masters.minimal-warmpool.example.com_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -189,6 +189,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions ...n/update_cluster/minimal_gossip/data/aws_iam_role_policy_masters.minimal.k8s.local_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -159,6 +159,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"iam:GetServerCertificate",
"iam:ListServerCertificates",
"kms:CreateGrant",
Expand Down
1 change: 1 addition & 0 deletions .../aws_iam_role_policy_aws-cloud-controller-manager.kube-system.sa.minimal.k8s.local_policy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -50,6 +50,7 @@
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:CreateServiceLinkedRole",
"kms:DescribeKey"
],
"Effect": "Allow",
Expand Down
Loading

0 comments on commit 1202209

Please sign in to comment.