Merge pull request #50198 from my-git9/np-30129
[zh-cn]sync security/_index.md
This commit is contained in:
Kubernetes Prow Robot
GitHub
commit
041fa1cfe3
|
|
@ -105,6 +105,24 @@ or detective controls around Pods, their containers, and the images that run in
|
|||
[网络策略(NetworkPolicy)](/zh-cn/docs/concepts/services-networking/network-policies/)
|
||||
可让控制 Pod 之间或 Pod 与集群外部网络之间的网络流量。
|
||||
|
||||
<!--
|
||||
### Admission control {#admission-control}
|
||||
|
||||
[Admission controllers](/docs/reference/access-authn-authz/admission-controllers/)
|
||||
are plugins that intercept Kubernetes API requests and can validate or mutate
|
||||
the requests based on specific fields in the request. Thoughtfully designing
|
||||
these controllers helps to avoid unintended disruptions as Kubernetes APIs
|
||||
change across version updates. For design considerations, see
|
||||
[Admission Webhook Good Practices](/docs/concepts/cluster-administration/admission-webhooks-good-practices/).
|
||||
-->
|
||||
### 准入控制 {#admission-control}
|
||||
|
||||
[准入控制器](/zh-cn/docs/reference/access-authn-authz/admission-controllers/)是拦截
|
||||
Kubernetes API 请求的插件,可以根据请求中的特定字段验证或修改请求。
|
||||
精心设计这些控制器有助于避免 Kubernetes API 在版本更新过程中发生意外干扰。
|
||||
有关设计注意事项,请参阅
|
||||
[Admission Webhook 良好实践](/zh-cn/docs/concepts/cluster-administration/admission-webhooks-good-practices/)。
|
||||
|
||||
<!--
|
||||
### Auditing
|
||||
|
||||
|
|
|
|||
Loading…
Reference in New Issue