ArgoCD management
Roles
Global ArgoCD Roles
| Role | Description | Usage |
| argocd-rw | This role has RW access to all ArgoCD projects | Read and modify applications |
| argocd-ro | This role has RO access to all ArgoCD projects | Read (get) permissions to show applications |
| argocd-exec | This role has EXEC access to all ArgoCD projects | Execute shell inside a running pod |
| argocd-sync | This role has SYNC access to all ArgoCD projects | Sync applications |
| argocd-restart | This role has RESTART access to all ArgoCD projects | Restart deployment/DaemonSet/StatefulSet |
| argocd-controller | This role has RO access to all controllers | View all controllers |
Project/cluster based ArgoCD Roles
* Each cluster has it's own project. Below roles can be used to restrict or allow access to a specific cluster.
| Role | Description | Usage |
| {projectname}-argocd-rw | This role has RW access to ArgoCD project | Read and modify applications |
| {projectname}-argocd-ro | This role has RO access to ArgoCD project | Read (get) permissions to show applications |
| {projectname}-argocd-exec | This role has EXEC access to ArgoCD project | Execute shell inside a running pod |
| {projectname}-argocd-sync | This role has SYNC access to ArgoCD project | Sync applications |
| {projectname}-argocd-restart | This role has RESTART access to ArgoCD project | Restart deployment/DaemonSet/StatefulSet |