O'Reilly logo

Docker and Kubernetes for Java Developers by Jaroslaw Krochmalski

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Attribute-based access control 

Attribute-Based Access Control (ABACpolicy will be used if you start the api-server with the --authorization-mode=ABAC option. This policy uses local files in which you can, in a flexible way, define permission every user should have. There is an additional option to provide a policy file: --authorization-policy-file, so the complete syntax to use this policy will be:

$ kube-apiserver --authorization-mode=ABAC \
--authorization-policy-file=<PATH_TO_ POLICY_FILE>  

Note that any changes to policy file will require a restart of the api-server.

As you remember from Chapter 7, Introduction to Kubernetes, Kubernetes clusters use the concept of namespaces to group related resources, such as Pods, deployments, or ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required