From f2f58c7cda094d933991cebacab3dfdbee86fe6d Mon Sep 17 00:00:00 2001
From: Matthew Wong <mawong@redhat.com>
Date: Thu, 30 Mar 2017 13:21:00 -0400
Subject: Add external provisioners playbook starting with aws efs

---
 .../tasks/generate_clusterrolebindings.yaml           | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)
 create mode 100644 roles/openshift_provisioners/tasks/generate_clusterrolebindings.yaml

(limited to 'roles/openshift_provisioners/tasks/generate_clusterrolebindings.yaml')

diff --git a/roles/openshift_provisioners/tasks/generate_clusterrolebindings.yaml b/roles/openshift_provisioners/tasks/generate_clusterrolebindings.yaml
new file mode 100644
index 000000000..ac21a5e37
--- /dev/null
+++ b/roles/openshift_provisioners/tasks/generate_clusterrolebindings.yaml
@@ -0,0 +1,19 @@
+---
+- name: Generate ClusterRoleBindings
+  template: src=clusterrolebinding.j2 dest={{mktemp.stdout}}/templates/{{obj_name}}-clusterrolebinding.yaml
+  vars:
+    acct_name: provisioners-{{item}}
+    obj_name: run-provisioners-{{item}}
+    labels:
+      provisioners-infra: support
+    crb_usernames: ["system:serviceaccount:{{openshift_provisioners_project}}:{{acct_name}}"]
+    subjects:
+      - kind: ServiceAccount
+        name: "{{acct_name}}"
+        namespace: "{{openshift_provisioners_project}}"
+    cr_name: "system:persistent-volume-provisioner"
+  with_items:
+    # TODO
+    - efs
+  check_mode: no
+  changed_when: no
-- 
cgit v1.2.3