Kubernetes User Operations: Difference between revisions
Jump to navigation
Jump to search
| Line 6: | Line 6: | ||
* [[Kubernetes_Security_Concepts|Kubernetes Security Concepts]] | * [[Kubernetes_Security_Concepts|Kubernetes Security Concepts]] | ||
=Add a | =<span id='Add_a_Normal_User_via_a_Certificate'></span>Add a User via a Certificate= | ||
A [[Kubernetes_Security_Concepts#User|user]] can authenticate against the Kubernetes cluster by being issued a certificate by the Kubernetes cluster and then present the certificate to the API call as the Certificate Header, or through [[kubectl]]. | A [[Kubernetes_Security_Concepts#User|user]] can authenticate against the Kubernetes cluster by being issued a certificate by the Kubernetes cluster and then present the certificate to the API call as the Certificate Header, or through [[kubectl]]. | ||
| Line 13: | Line 13: | ||
<font color=darkgray>TODO: https://kubernetes.io/docs/reference/access-authn-authz/authentication/#x509-client-certs</font> | <font color=darkgray>TODO: https://kubernetes.io/docs/reference/access-authn-authz/authentication/#x509-client-certs</font> | ||
=Add a User with Bearer Tokens= | |||
==Static Token File== | |||
<font color=darkgray>TODO: https://kubernetes.io/docs/reference/access-authn-authz/authentication/#static-token-file</font> | |||
Revision as of 23:42, 1 October 2020
External
Internal
Add a User via a Certificate
A user can authenticate against the Kubernetes cluster by being issued a certificate by the Kubernetes cluster and then present the certificate to the API call as the Certificate Header, or through kubectl.
TODO: https://kubernetes.io/docs/reference/access-authn-authz/certificate-signing-requests/#normal-user
TODO: https://kubernetes.io/docs/reference/access-authn-authz/authentication/#x509-client-certs
Add a User with Bearer Tokens
Static Token File
TODO: https://kubernetes.io/docs/reference/access-authn-authz/authentication/#static-token-file