chore: disable manual rbac by default

addons-cluster/apecloud-mysql/values.yaml

@@ -53,7 +53,6 @@ proxy:
 ## customized default values to override kblib chart's values
 extra:
   disableExporter: true
-  rbacEnabled: true
   terminationPolicy: Delete
 
 ## metrics sidecars

addons-cluster/apecloud-postgresql/templates/cluster.yaml

@@ -13,4 +13,3 @@ spec:
       componentDef: apecloud-postgresql14
       {{- include "kblib.componentMonitor" . | indent 6 }}
       replicas: {{ include "apecloud-postgresql-cluster.replicas" . }}
-      serviceAccountName: {{ include "kblib.serviceAccountName" . }}

addons-cluster/clickhouse/values.yaml

@@ -66,6 +66,3 @@ extra:
   ## Define Cluster termination policy.
   ## Options: DoNotTerminate, Halt, Delete, WipeOut.
   terminationPolicy: DoNotTerminate
-
-  ## If true, RBAC resources will be created
-  rbacEnabled: false

addons-cluster/elasticsearch/templates/cluster-multi-node.yaml

@@ -13,7 +13,6 @@ spec:
     - name: mdit
       componentDef: elasticsearch-{{ include "elasticsearch.majorVersion" . }}
       serviceVersion: {{ include "elasticsearch.version" . }}
-      serviceAccountName: {{ include "kblib.serviceAccountName" . }}
       {{- include "elasticsearch-cluster.schedulingPolicy" . | indent 6 }}
       {{- include "elasticsearch-cluster.replicaCount" . | indent 6 }}
       {{- include "kblib.componentMonitor" . | indent 6 }}

addons-cluster/elasticsearch/templates/cluster-single-node.yaml

@@ -13,7 +13,6 @@ spec:
     - name: mdit
       componentDef: elasticsearch-{{ include "elasticsearch.majorVersion" . }}
       serviceVersion: {{ include "elasticsearch.version" . }}
-      serviceAccountName: {{ include "kblib.serviceAccountName" . }}
       {{- include "elasticsearch-cluster.schedulingPolicy" . | indent 6 }}
       {{- include "elasticsearch-cluster.replicaCount" . | indent 6 }}
       {{- include "kblib.componentMonitor" . | indent 6 }}

addons-cluster/elasticsearch/values.yaml

@@ -29,5 +29,4 @@ fullnameOverride: ""
 ## customized default values to override kblib chart's values
 extra:
   terminationPolicy: Delete
-  rbacEnabled: true
   disableExporter: false

addons-cluster/kafka/templates/cluster.yaml

@@ -35,7 +35,6 @@ spec:
         name: KubeBlocks
       {{- end }}
       replicas: {{ $.Values.replicas }}
-      serviceAccountName: {{ include "kblib.serviceAccountName" . }}
       services:
         - name: advertised-listener
         {{- if $.Values.nodePortEnabled }}
@@ -82,7 +81,6 @@ spec:
         name: KubeBlocks
       {{- end }}
       replicas: {{ $.Values.brokerReplicas }}
-      serviceAccountName: {{ include "kblib.serviceAccountName" . }}
       services:
         - name: advertised-listener
         {{- if $.Values.nodePortEnabled }}
@@ -128,7 +126,6 @@ spec:
         name: KubeBlocks
       {{- end }}
       replicas: {{ $.Values.controllerReplicas }}
-      serviceAccountName: {{ include "kblib.serviceAccountName" . }}
       {{- include "kblib.componentResources" . | indent 6 }}
       {{- if $.Values.storageEnable }}
       volumeClaimTemplates:

addons-cluster/kblib/values.schema.json

@@ -19,12 +19,6 @@
         "Delete",
         "WipeOut"
       ]
-    },
-    "rbacEnabled": {
-      "title": "RBAC Enabled",
-      "description": "Specify whether rbac resources will be created by client, otherwise KubeBlocks server will try to create rbac resources.",
-      "type": "boolean",
-      "default": false
     }
   }
 }

addons-cluster/kblib/values.yaml

@@ -6,7 +6,3 @@ disableExporter: true
 
 ## @param terminationPolicy
 terminationPolicy: Delete
-
-## @param rbacEnabled if true, rbac resources will be created
-##
-rbacEnabled: false

addons-cluster/mariadb/templates/cluster.yaml

@@ -9,5 +9,4 @@ spec:
     - name: mariadb
       componentDef: mariadb
       replicas: {{ include "mariadb-cluster.replicas" . }}
-      serviceAccountName: {{ include "kblib.serviceAccountName" . }}
       {{- include "kblib.componentResources" . | indent 6 }}

addons-cluster/milvus/templates/cluster.yaml

@@ -18,7 +18,6 @@ spec:
         {{- include "milvus.serviceRef.meta" . | indent 8 }}
         {{- include "milvus.serviceRef.log" . | indent 8 }}
         {{- include "milvus.serviceRef.object" . | indent 8 }}
-      serviceAccountName: {{ include "kblib.serviceAccountName" . }}
       {{- include "kblib.componentMonitor" . | indent 6 }}
     {{- end }}
     - name: mixcoord
@@ -28,7 +27,6 @@ spec:
         {{- include "milvus.serviceRef.meta" . | indent 8 }}
         {{- include "milvus.serviceRef.log" . | indent 8 }}
         {{- include "milvus.serviceRef.object" . | indent 8 }}
-      serviceAccountName: {{ include "kblib.serviceAccountName" . }}
       {{- include "kblib.componentMonitor" . | indent 6 }}
     - name: datanode
       replicas: {{ .Values.datanode.replicas}}
@@ -38,7 +36,6 @@ spec:
         {{- include "milvus.serviceRef.meta" . | indent 8 }}
         {{- include "milvus.serviceRef.log" . | indent 8 }}
         {{- include "milvus.serviceRef.object" . | indent 8 }}
-      serviceAccountName: {{ include "kblib.serviceAccountName" . }}
       {{- include "kblib.componentMonitor" . | indent 6 }}
     - name: indexnode
       replicas: {{ .Values.indexnode.replicas}}
@@ -48,7 +45,6 @@ spec:
         {{- include "milvus.serviceRef.meta" . | indent 8 }}
         {{- include "milvus.serviceRef.log" . | indent 8 }}
         {{- include "milvus.serviceRef.object" . | indent 8 }}
-      serviceAccountName: {{ include "kblib.serviceAccountName" . }}
       {{- include "kblib.componentMonitor" . | indent 6 }}
     - name: querynode
       replicas: {{ .Values.querynode.replicas}}
@@ -58,6 +54,5 @@ spec:
         {{- include "milvus.serviceRef.meta" . | indent 8 }}
         {{- include "milvus.serviceRef.log" . | indent 8 }}
         {{- include "milvus.serviceRef.object" . | indent 8 }}
-      serviceAccountName: {{ include "kblib.serviceAccountName" . }}
       {{- include "kblib.componentMonitor" . | indent 6 }}
 {{- end }}

addons-cluster/milvus/templates/standalone.yaml

@@ -17,7 +17,6 @@ spec:
       volumeClaimTemplates:
         {{- include "milvus.vct.data" . | indent 8 }}
       {{- end }}
-      serviceAccountName: {{ include "kblib.serviceAccountName" . }}
       {{- include "kblib.componentMonitor" . | indent 6 }}
     - name: minio
       replicas: {{ .Values.replicas | default 1 }}
@@ -26,7 +25,6 @@ spec:
       volumeClaimTemplates:
         {{- include "milvus.vct.data" . | indent 8 }}
       {{- end }}
-      serviceAccountName: {{ include "kblib.serviceAccountName" . }}
       {{- include "kblib.componentMonitor" . | indent 6 }}
     - name: milvus
       replicas: {{ .Values.replicas | default 1 }}
@@ -35,6 +33,5 @@ spec:
       volumeClaimTemplates:
         {{- include "milvus.vct.data" . | indent 8 }}
       {{- end }}
-      serviceAccountName: {{ include "kblib.serviceAccountName" . }}
       {{- include "kblib.componentMonitor" . | indent 6 }}
 {{- end }}

addons-cluster/minio/templates/cluster.yaml

@@ -13,7 +13,6 @@ spec:
       env:
       - name: MINIO_BUCKETS
         value: {{ .Values.buckets }}
-      serviceAccountName: {{ include "kblib.serviceAccountName" . }}
       {{- include "kblib.componentMonitor" . | indent 6 }}
       {{- include "kblib.componentResources" . | indent 6 }}
       {{- include "kblib.componentStorages" . | indent 6 }}

addons-cluster/mogdb/templates/cluster.yaml

@@ -12,6 +12,5 @@ spec:
       serviceVersion: {{ .Values.version | quote}}
       {{- include "kblib.componentMonitor" . | indent 6 }}
       {{- include "mogdb-cluster.replicaCount" . | indent 6 }}
-      serviceAccountName: {{ include "kblib.serviceAccountName" . }}
       {{- include "kblib.componentResources" . | indent 6 }}
       {{- include "kblib.componentStorages" . | indent 6 }}

addons-cluster/mongodb/templates/cluster.yaml

@@ -12,6 +12,5 @@ spec:
     - name: mongodb
       serviceVersion: {{ .Values.version }}
       {{- include "mongodb-cluster.replicaCount" . | indent 6 }}
-      serviceAccountName: {{ include "kblib.serviceAccountName" . }}
       {{- include "kblib.componentResources" . | indent 6 }}
       {{- include "kblib.componentStorages" . | indent 6 }}

addons-cluster/mongodb/values.yaml

@@ -31,7 +31,5 @@ storage: 20
 
 hostnetwork: "enabled"
 
-## @param extra.rbacEnabled if true, create rbac
 extra:
-  rbacEnabled: true
-  terminationPolicy: Delete
+  terminationPolicy: Delete

addons-cluster/mysql/values.yaml

@@ -43,9 +43,7 @@ proxysql:
   cpu: 1
   memory: 1
 
-## @param extra.rbacEnabled if true, create rbac
 extra:
-  rbacEnabled: true
   terminationPolicy: Delete
 
 orchestrator:

addons-cluster/official-postgresql/templates/cluster.yaml

@@ -5,6 +5,5 @@
       componentDefRef: postgresql
       {{- include "kblib.componentMonitor" . | indent 6 }}
       {{- include "official-postgresql-cluster.replicaCount" . | indent 6 }}
-      serviceAccountName: {{ include "kblib.serviceAccountName" . }}
       {{- include "kblib.componentResources" . | indent 6 }}
       {{- include "kblib.componentStorages" . | indent 6 }}

addons-cluster/orioledb/templates/cluster.yaml

@@ -8,6 +8,5 @@
         namespace: {{ .Values.etcd.namespace | default "default" }}
       {{- include "kblib.componentMonitor" . | indent 6 }}
       {{- include "orioledb-cluster.replicaCount" . | indent 6 }}
-      serviceAccountName: {{ include "kblib.serviceAccountName" . }}
       {{- include "kblib.componentResources" . | indent 6 }}
       {{- include "kblib.componentStorages" . | indent 6 }}

addons-cluster/qdrant/templates/cluster.yaml

@@ -12,7 +12,6 @@ spec:
     - name: qdrant
       componentDef: qdrant
       serviceVersion: {{ include "qdrant.version" . }}
-      serviceAccountName: {{ include "kblib.serviceAccountName" . }}
       {{- include "kblib.componentMonitor" . | indent 6 }}
       replicas: {{ .Values.replicas | default 1 }}
       {{- include "kblib.componentResources" . | indent 6 }}

addons-cluster/qdrant/values.yaml

@@ -28,4 +28,3 @@ storage: 20
 ## customized default values to override kblib chart's values
 extra:
   terminationPolicy: Delete
-  rbacEnabled: true

addons-cluster/rabbitmq/templates/cluster.yaml

@@ -11,6 +11,5 @@ spec:
       componentDef: rabbitmq
       serviceVersion: {{ .Values.version }}
       {{- include "rabbitmq-cluster.replicaCount" . | indent 6 }}
-      serviceAccountName: {{ include "kblib.serviceAccountName" . }}
       {{- include "kblib.componentResources" . | indent 6 }}
       {{- include "kblib.componentStorages" . | indent 6 }}

addons-cluster/rabbitmq/values.yaml

@@ -30,4 +30,3 @@ requests:
 storage: 20
 
 extra:
-  rbacEnabled: true

addons-cluster/redis/templates/_helpers.tpl

@@ -53,7 +53,6 @@ Define redis ComponentSpec with ComponentDefinition.
     serviceType: NodePort
     podService: true
   {{- end }}
-  serviceAccountName: {{ include "kblib.serviceAccountName" . }}
   {{- include "kblib.componentResources" . | indent 2 }}
   {{- include "kblib.componentStorages" . | indent 2 }}
 {{- end }}
@@ -70,7 +69,6 @@ Define redis sentinel ComponentSpec with ComponentDefinition.
     serviceType: NodePort
     podService: true
   {{- end }}
-  serviceAccountName: {{ include "kblib.serviceAccountName" . }}
   resources:
     limits:
       cpu: {{ .Values.sentinel.cpu | quote }}
@@ -93,7 +91,6 @@ Define redis twemproxy ComponentSpec with ComponentDefinition.
 */}}
 {{- define "redis-cluster.twemproxyComponentSpec" }}
 - name: redis-twemproxy
-  serviceAccountName: {{ include "kblib.serviceAccountName" . }}
   replicas: {{ .Values.twemproxy.replicas }}
   resources:
     limits: