Revert "docs: fix typo in additional-clusters.md (#10868)"

ericpaulsen · ericpaulsen · commit 37155c80bbf3 · 2023-11-27T01:45:42.000Z
This reverts commit 481fc9a.
diff --git a/docs/platforms/kubernetes/additional-clusters.md b/docs/platforms/kubernetes/additional-clusters.md
@@ -109,22 +109,24 @@ kubectl apply -n coder-workspaces -f - <<EOF
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  name: coder-v2
+  # Must be different than the Coder control plane service account, so prevent duplicates.
+  name: coder-2
 ---
 apiVersion: v1
 kind: Secret
 metadata:
-  name: coder-v2
+  name: coder-service-account-token
   annotations:
-    kubernetes.io/service-account.name: coder-v2
+    kubernetes.io/service-account.name: coder
 type: kubernetes.io/service-account-token
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  name: coder-v2
+  # Must be different than the Coder control plane service account, so prevent duplicates.
+  name: coder-2
 rules:
-  - apiGroups: ["", "apps", "networking.k8s.io"]
+  - apiGroups: ["", "apps", "networking.k8s.io"] # "" indicates the core API group
     resources: ["persistentvolumeclaims", "pods", "deployments", "services", "secrets", "pods/exec","pods/log", "events", "networkpolicies", "serviceaccounts"]
     verbs: ["create", "get", "list", "watch", "update", "patch", "delete", "deletecollection"]
   - apiGroups: ["metrics.k8s.io", "storage.k8s.io"]
@@ -134,24 +136,25 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  name: coder-v2
+  # Must be different than the Coder control plane service account, so prevent duplicates.
+  name: coder-2
 subjects:
   - kind: ServiceAccount
-    name: coder-v2
+    name: coder
 roleRef:
   kind: Role
-  name: coder-v2
+  name: coder
   apiGroup: rbac.authorization.k8s.io
 EOF
 ```
 
 The output should be similar to:
 
 ```text
-serviceaccount/coder-v2 created
-secret/coder-v2 created
-role.rbac.authorization.k8s.io/coder-v2 created
-rolebinding.rbac.authorization.k8s.io/coder-v2 created
+serviceaccount/coder created
+secret/coder-service-account-token created
+role.rbac.authorization.k8s.io/coder created
+rolebinding.rbac.authorization.k8s.io/coder created
 ```
 
 ### 2. Modify the Kubernetes template
@@ -203,9 +206,9 @@ export CLUSTER_ADDRESS=https://example.domain:6443
 To fetch the CA certificate and token:
 
 ```shell
-export CLUSTER_CA_CERTIFICATE=$(kubectl get secrets coder-v2 -n coder-workspaces -o jsonpath="{.data.ca\.crt}")
+export CLUSTER_CA_CERTIFICATE=$(kubectl get secrets coder-service-account-token -n coder-workspaces -o jsonpath="{.data.ca\.crt}")
 
-export CLUSTER_SERVICEACCOUNT_TOKEN=$(kubectl get secrets coder-v2 -n coder-workspaces -o jsonpath="{.data.token}")
+export CLUSTER_SERVICEACCOUNT_TOKEN=$(kubectl get secrets coder-service-account-token -n coder-workspaces -o jsonpath="{.data.token}")
 ```
 
 Create the template with these values:
