home-server/deployments/operators/replicator.yaml

---
apiVersion: v1
kind: ServiceAccount
metadata:
  name: kubernetes-replicator
  namespace: kube-system
---
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole
metadata:
  name: kubernetes-replicator
rules:
  - apiGroups: ["", "apps", "extensions"]
    resources:
      - secrets
      - configmaps
      - roles
      - rolebindings
      - cronjobs
      - deployments
      - events
      - ingresses
      - jobs
      - pods
      - pods/attach
      - pods/exec
      - pods/log
      - pods/portforward
      - services
      - namespaces
      - serviceaccounts
    verbs: ["*"]
  - apiGroups: ["batch"]
    resources:
      - configmaps
      - cronjobs
      - deployments
      - events
      - ingresses
      - jobs
      - pods
      - pods/attach
      - pods/exec
      - pods/log
      - pods/portforward
      - services
    verbs: ["*"]
  - apiGroups: ["rbac.authorization.k8s.io"]
    resources:
      - roles
      - rolebindings
      - clusterrolebindings
    verbs: ["get", "list", "watch"]
---
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
  name: kubernetes-replicator
roleRef:
  apiGroup: rbac.authorization.k8s.io
  kind: ClusterRole
  name: kubernetes-replicator
subjects:
  - kind: ServiceAccount
    name: kubernetes-replicator
    namespace: kube-system
---
apiVersion: source.toolkit.fluxcd.io/v1beta2
kind: HelmRepository
metadata:
  name: mittwald
  namespace: flux-system
spec:
  url: https://helm.mittwald.de
  interval: 1h
---
apiVersion: helm.toolkit.fluxcd.io/v2beta1
kind: HelmRelease
metadata:
  name: kubernetes-replicator
  namespace: kube-system
spec:
  interval: 5m
  chart:
    spec:
      chart: kubernetes-replicator
      sourceRef:
        kind: HelmRepository
        name: mittwald
        namespace: flux-system
  install:
    createNamespace: false
  upgrade:
    disableWait: false
  values:
    serviceAccount:
      create: false
      name: kubernetes-replicator
Add replicator 2025-07-03 14:40:10 +10:00			`---`
			`apiVersion: v1`
			`kind: ServiceAccount`
			`metadata:`
			`name: kubernetes-replicator`
			`namespace: kube-system`
			`---`
			`apiVersion: rbac.authorization.k8s.io/v1`
			`kind: ClusterRole`
			`metadata:`
			`name: kubernetes-replicator`
			`rules:`
			`- apiGroups: ["", "apps", "extensions"]`
			`resources:`
			`- secrets`
			`- configmaps`
			`- roles`
			`- rolebindings`
			`- cronjobs`
			`- deployments`
			`- events`
			`- ingresses`
			`- jobs`
			`- pods`
			`- pods/attach`
			`- pods/exec`
			`- pods/log`
			`- pods/portforward`
			`- services`
Give more perms to replicator 2025-07-04 17:51:05 +10:00			`- namespaces`
			`- serviceaccounts`
Add replicator 2025-07-03 14:40:10 +10:00			`verbs: ["*"]`
			`- apiGroups: ["batch"]`
			`resources:`
			`- configmaps`
			`- cronjobs`
			`- deployments`
			`- events`
			`- ingresses`
			`- jobs`
			`- pods`
			`- pods/attach`
			`- pods/exec`
			`- pods/log`
			`- pods/portforward`
			`- services`
			`verbs: ["*"]`
Give access to rolebindings and clusterroles 2025-07-03 16:59:47 +10:00			`- apiGroups: ["rbac.authorization.k8s.io"]`
			`resources:`
Give more perms to replicator 2025-07-04 17:51:05 +10:00			`- roles`
Give access to rolebindings and clusterroles 2025-07-03 16:59:47 +10:00			`- rolebindings`
			`- clusterrolebindings`
Forgot verbs 2025-07-03 17:00:11 +10:00			`verbs: ["get", "list", "watch"]`
Add replicator 2025-07-03 14:40:10 +10:00			`---`
			`apiVersion: rbac.authorization.k8s.io/v1`
			`kind: ClusterRoleBinding`
			`metadata:`
			`name: kubernetes-replicator`
			`roleRef:`
			`apiGroup: rbac.authorization.k8s.io`
			`kind: ClusterRole`
			`name: kubernetes-replicator`
			`subjects:`
			`- kind: ServiceAccount`
			`name: kubernetes-replicator`
			`namespace: kube-system`
			`---`
			`apiVersion: source.toolkit.fluxcd.io/v1beta2`
			`kind: HelmRepository`
			`metadata:`
			`name: mittwald`
			`namespace: flux-system`
			`spec:`
			`url: https://helm.mittwald.de`
			`interval: 1h`
			`---`
			`apiVersion: helm.toolkit.fluxcd.io/v2beta1`
			`kind: HelmRelease`
			`metadata:`
			`name: kubernetes-replicator`
			`namespace: kube-system`
			`spec:`
			`interval: 5m`
			`chart:`
			`spec:`
			`chart: kubernetes-replicator`
			`sourceRef:`
			`kind: HelmRepository`
			`name: mittwald`
			`namespace: flux-system`
			`install:`
			`createNamespace: false`
			`upgrade:`
			`disableWait: false`
			`values:`
			`serviceAccount:`
			`create: false`
			`name: kubernetes-replicator`