RBAC Manager
Purpose: For platform engineers, security teams, documents the RBAC Manager service in openCenter-gitops-base.
rbac-manager turns Kubernetes RBAC into a higher-level declarative workflow by reconciling RBACDefinition resources into bindings.
What This Repo Deploys
-
Namespace/rbac-system -
HelmRelease/rbac-manager -
Base values Secret:
rbac-manager-values-base -
Optional override Secret:
rbac-manager-values-override
When to Use It
-
Teams need consistent RBAC patterns across many namespaces.
-
OIDC groups should map to reusable RBAC definitions rather than hand-written bindings.
Example
apiVersion: rbacmanager.reactiveops.io/v1beta1
kind: RBACDefinition
metadata:
name: read-onlyConfiguration Surfaces
-
Service path:
applications/base/services/rbac-manager/ -
Namespace:
rbac-system -
Flux object:
HelmRelease/rbac-manager -
Source: Fairwinds stable Helm repository