# permissions for end users to view keycloakclientscopes. apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: name: keycloakclientscope-viewer-role rules: - apiGroups: - v1.edp.epam.com resources: - keycloakclientscopes verbs: - get - list - watch - apiGroups: - v1.edp.epam.com resources: - keycloakclientscopes/status verbs: - get