Kubernetes RBAC Operations: Difference between revisions
Jump to navigation
Jump to search
| Line 7: | Line 7: | ||
kubectl get clusterroles | kubectl get clusterroles | ||
=Get Details about a Specific Role= | =Get Details about a Specific Cluster Role= | ||
kubectl -o yaml get clusterroles cluster-admin | kubectl -o yaml get clusterroles cluster-admin | ||
=List Cluster Role Bindings= | |||
kubectl get clusterrolebindings | |||
=Get Details about a Specific Cluster Role Binding= | |||
kubectl get clusterrolebindings cluster-admin -o yaml | |||
<syntaxhighlight lang='yaml'> | |||
apiVersion: rbac.authorization.k8s.io/v1 | |||
kind: ClusterRoleBinding | |||
metadata: | |||
annotations: | |||
rbac.authorization.kubernetes.io/autoupdate: "true" | |||
creationTimestamp: "2019-08-23T00:23:50Z" | |||
labels: | |||
kubernetes.io/bootstrapping: rbac-defaults | |||
name: cluster-admin | |||
resourceVersion: "97" | |||
selfLink: /apis/rbac.authorization.k8s.io/v1/clusterrolebindings/cluster-admin | |||
uid: 47d578f3-c53c-11e9-9b4b-06fd25eb2db2 | |||
roleRef: | |||
apiGroup: rbac.authorization.k8s.io | |||
kind: ClusterRole | |||
name: cluster-admin | |||
subjects: | |||
- apiGroup: rbac.authorization.k8s.io | |||
kind: Group | |||
name: system:masters | |||
</syntaxhighlight> | |||
=Assigning a Cluster Role to a Service Account= | =Assigning a Cluster Role to a Service Account= | ||
Revision as of 22:01, 11 September 2019
Internal
List Cluster Roles
kubectl get clusterroles
Get Details about a Specific Cluster Role
kubectl -o yaml get clusterroles cluster-admin
List Cluster Role Bindings
kubectl get clusterrolebindings
Get Details about a Specific Cluster Role Binding
kubectl get clusterrolebindings cluster-admin -o yaml
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
annotations:
rbac.authorization.kubernetes.io/autoupdate: "true"
creationTimestamp: "2019-08-23T00:23:50Z"
labels:
kubernetes.io/bootstrapping: rbac-defaults
name: cluster-admin
resourceVersion: "97"
selfLink: /apis/rbac.authorization.k8s.io/v1/clusterrolebindings/cluster-admin
uid: 47d578f3-c53c-11e9-9b4b-06fd25eb2db2
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: ClusterRole
name: cluster-admin
subjects:
- apiGroup: rbac.authorization.k8s.io
kind: Group
name: system:masters