Changing permissions of UCP - removing unused permissions

deploy/Chart/templates/ucp/rbac.yaml

@@ -6,52 +6,38 @@ metadata:
     app.kubernetes.io/name: ucp
     app.kubernetes.io/part-of: radius
 rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - secrets
-  - services
-  verbs:
-  - create
-  - delete
-  - get
-  - list
-  - patch
-  - update
-  - watch
-- apiGroups:
-  - apps
-  resources:
-  - deployments
-  - statefulsets
-  verbs:
-  - create
-  - delete
-  - get
-  - list
-  - patch
-  - update
-  - watch
-- apiGroups:
-  - ucp.dev
-  resources:
-  - resources
-  - queuemessages
-  verbs:
-  - create
-  - delete
-  - get
-  - list
-  - patch
-  - update
-  - watch
-- apiGroups:
-  - api.ucp.dev
-  resources:
-  - '*'
-  verbs:
-  - '*'
+  - apiGroups:
+      - ""
+    resources:
+      - secrets
+    verbs:
+      - create
+      - delete
+      - get
+      - update
+
+  - apiGroups:
+      - ucp.dev
+    resources:
+      - resources
+      - queuemessages
+    verbs:
+      - create
+      - delete
+      - get
+      - list
+      - update
+
+  - apiGroups:
+      - api.ucp.dev
+    resources:
+      - "*"
+    verbs:
+      - create
+      - delete
+      - get
+      - list
+      - update
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
@@ -65,6 +51,6 @@ roleRef:
   kind: ClusterRole
   name: ucp
 subjects:
-- kind: ServiceAccount
-  name: ucp
-  namespace: {{ .Release.Namespace }}
+  - kind: ServiceAccount
+    name: ucp
+    namespace: {{ .Release.Namespace }}