From 92a7f18531f6c87068944eb4b0d43a9bce1ce9f4 Mon Sep 17 00:00:00 2001
From: Leo Ryu <leonarliu@tencent.com>
Date: Wed, 27 Apr 2022 21:15:49 +0800
Subject: [PATCH] fix(audit): use tke default service account (#1883)

---
 .../tke-audit-api/tke-audit-api.yaml          | 39 -------------------
 1 file changed, 39 deletions(-)

diff --git a/cmd/tke-installer/app/installer/manifests/tke-audit-api/tke-audit-api.yaml b/cmd/tke-installer/app/installer/manifests/tke-audit-api/tke-audit-api.yaml
index f8c189f3e..0a94bc3ed 100644
--- a/cmd/tke-installer/app/installer/manifests/tke-audit-api/tke-audit-api.yaml
+++ b/cmd/tke-installer/app/installer/manifests/tke-audit-api/tke-audit-api.yaml
@@ -15,44 +15,6 @@ spec:
       port: 443
       targetPort: 9461
 ---
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  name: tke-audit-api
-  namespace: tke
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    kubernetes.io/bootstrapping: rbac-defaults
-  name: tke-audit-api
-  namespace: tke
-rules:
-  - apiGroups: [""]
-    resources:
-      - configmaps
-    resourceNames: ["tke-audit-api"]
-    verbs: ["get", "update"]
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  annotations:
-    rbac.authorization.kubernetes.io/autoupdate: "true"
-  labels:
-    kubernetes.io/bootstrapping: rbac-defaults
-  name: tke-audit-api
-  namespace: tke
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: tke-audit-api
-subjects:
-  - kind: ServiceAccount
-    name: tke-audit-api
-    namespace: tke
----
 kind: Deployment
 apiVersion: apps/v1
 metadata:
@@ -80,7 +42,6 @@ spec:
             - matchExpressions:
               - key: node-role.kubernetes.io/master
                 operator: Exists
-      serviceAccountName: tke-audit-api
       containers:
         - name: tke-audit-api
           image: {{ .Image }}