github/falco
1
0
Fork 0
mirror of https://github.com/falcosecurity/falco.git synced 2025-10-22 03:49:36 +00:00
Code Issues Projects Releases Wiki Activity
Files
4696519debc59b5d1409df8da4002f10f08640ed
falco/integrations/kubernetes-response-engine/deployment/aws/Makefile
Néstor Salceda 4696519deb Honor the principle of least privilege for AWS deployment 
Configure needed permisssions instead of using one too permissive.
2018-11-12 11:49:07 +01:00

18 lines
509 B
Makefile
Raw Blame History

all: rbac create configure
rbac:
kubectl apply -f ../cluster-role.yaml
kubectl apply -f cluster-role-binding.yaml
create:
terraform apply -auto-approve
configure:
kubectl get -n kube-system configmap/aws-auth -o yaml | awk "/mapRoles: \|/{print;print \"$(shell terraform output patch_for_aws_auth)\";next}1" > aws-auth-patch.yml
kubectl -n kube-system replace -f aws-auth-patch.yml
clean:
terraform destroy -force
kubectl delete -f cluster-role-binding.yaml
kubectl delete -f ../cluster-role.yaml
Reference in New Issue View Git Blame Copy Permalink