Add different roles for resources in same apigroups in kubernetes

Question

Hello,

I need to define different roles for pods/log and namespaces.. Does this syntax works:-

- apiGroups: [""] 
  resources:
    - pods   
  verbs:
    - create
    - delete
    - get
    - list
  resources:
    - pods/log
    - namespaces
  verbs:
    - get
    - list

I tried running this.. But the last section of resources overwritten the pods section and its verbs.

Answer 1

@Tanul ,

Can you try out the below YAML:

apiVersion: rbac.authorization.k8s.io/v1
kind: Role
metadata:
  namespace: default
  name: rbac
rules:
- apiGroups: [""]
  resources:
    - pods   
  verbs:
    - create
    - delete
    - get
    - list
- apiGroups: [""]
  resources:
    - pods/log
    - namespaces
  verbs:
    - get
    - list