feat: Add ability to control RBAC within a member's namespace #2

Merged
merenber merged 1 commits from ztseguin/manifests:feat-ns-rbac into master 11 months ago
Owner

See https://kubernetes.io/docs/reference/access-authn-authz/rbac/#privilege-escalation-prevention-and-bootstrapping for how Kubernetes prevents privilege escalation with this.

This is important for creating restricted permissions within the namespace for application components - in particular those that require API server access.

See https://kubernetes.io/docs/reference/access-authn-authz/rbac/#privilege-escalation-prevention-and-bootstrapping for how Kubernetes prevents privilege escalation with this. This is important for creating restricted permissions within the namespace for application components - in particular those that require API server access.
ztseguin added 1 commit 11 months ago
merenber merged commit c9acdbc9e6 into master 11 months ago
merenber deleted branch feat-ns-rbac 11 months ago
The pull request has been merged as c9acdbc9e6.
Sign in to join this conversation.
No reviewers
No Label
No Milestone
No project
No Assignees
1 Participants
Notifications
Due Date

No due date set.

Dependencies

No dependencies set.

Reference: cloud/manifests#2
Loading…
There is no content yet.