Version: 2.3

Cluster Roles Templates

Cluster roles in Loft are defining templates for Kubernetes ClusterRoles that are intended to grant permissions to the clusters connected to Loft. The benefit of using Loft's cluster roles is that they are automatically synchronized to your connected clusters which means that multi-cluster RBAC configuration can be managed from a single source of truth to reduce complexity and management effort.

Configuration

Metadata

Display Name

JSONPath in ClusterRoleTemplate CRD:

 spec.displayName (type: string)

Kubernetes Name

JSONPath in ClusterRoleTemplate CRD:

 metadata.name (type: string)

Description

JSONPath in ClusterRoleTemplate CRD:

 spec.description (type: string)

Labels

JSONPath in ClusterRoleTemplate CRD:

 metadata.labels (type: map[string]string)

Annotations

JSONPath in ClusterRoleTemplate CRD:

 metadata.annotations (type: map[string]string)

ClusterRole Template

RBAC Rules

JSONPath in ClusterRoleTemplate CRD:

 spec.localClusterRoleTemplate.spec.clusterRoleTemplate.rules (type: RBACRule[])

Aggregation

JSONPath in ClusterRoleTemplate CRD:

 spec.localClusterRoleTemplate.spec.clusterRoleTemplate.aggregationRule (type: RBACAggregationRule{})

Labels

JSONPath in ClusterRoleTemplate CRD:

 spec.localClusterRoleTemplate.metadata.labels (type: string[])

Annotations

JSONPath in ClusterRoleTemplate CRD:

 spec.localClusterRoleTemplate.metadata.annotations (type: string[])

Clusters

JSONPath in ClusterRoleTemplate CRD:

 spec.clusters (type: string[])

Access To Cluster Role

JSONPath in ClusterRoleTemplate CRD:

 spec.access (type: Access[])

Configuration​

Metadata​

Display Name​

Kubernetes Name​

Description​

Labels​

Annotations​

ClusterRole Template​

RBAC Rules​

Aggregation​

Labels​

Annotations​

Clusters​

Access To Cluster Role​

Configuration

Metadata

Display Name

Kubernetes Name

Description

Labels

Annotations

ClusterRole Template

RBAC Rules

Aggregation

Labels

Annotations

Clusters

Access To Cluster Role