a4dc44fe93
Automatic merge from submit-queue. add clusterrole aggregation doc In order to support easy RBAC integration for CustomResources and Extension APIServers, we need to have a way for API extenders to add permissions to the "normal" roles for admin, edit, and view. A doc form of https://github.com/kubernetes/kubernetes/pull/54005 @kubernetes/sig-auth-feature-requests |
||
|---|---|---|
| .. | ||
| OWNERS | ||
| README.md | ||
| cluster-role-aggregation.md | ||
README.md
Auth SIG
Covers improvements to Kubernetes authorization, authentication, and cluster security policy.
Meetings
- Wednesdays at 18:00 UTC (biweekly). Convert to your timezone.
Meeting notes and Agenda can be found here. Meeting recordings can be found here.
Leads
- Eric Chiang (@ericchiang), CoreOS
- Jordan Liggitt (@liggitt), Red Hat
- David Eads (@deads2k), Red Hat
Contact
Goals
- Discuss improvements Kubernetes Authorization and Authentication, and cluster security policy.
Non-goals
- To report specific vulnerabilities in Kubernetes, please report using these instructions: https://kubernetes.io/security/
- General discussion of Linux security, or of containers is better directed to a non-Kubernetes mailing list.
- Proactive or general security discussion about Kubelet should go to kubernetes-sig-node@googlegroups.com.
- Proactive or general security discussion about the API server should go to kubernetes-sig-api-machinery@googlegroups.com.