This change introduces the TokenRequestServiceAccountUIDValidation feature gate and implements feature-gated service account UID validation for the TokenRequest API. When enabled, the API validates that the service account UID in token requests matches the actual service account UID, preventing token requests for recreated service accounts with the same name but different UIDs. Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com> Kubernetes-commit: 45dfb46448a130482e9050664f9d7f7288c0b4b3 |
||
---|---|---|
.. | ||
OWNERS | ||
kube_features.go |