Merge pull request #50198 from my-git9/np-30129
[zh-cn]sync security/_index.md
This commit is contained in:
Kubernetes Prow Robot
GitHub
commit
041fa1cfe3
|
|
@ -105,6 +105,24 @@ or detective controls around Pods, their containers, and the images that run in
|
||||||
[网络策略(NetworkPolicy)](/zh-cn/docs/concepts/services-networking/network-policies/)
|
[网络策略(NetworkPolicy)](/zh-cn/docs/concepts/services-networking/network-policies/)
|
||||||
可让控制 Pod 之间或 Pod 与集群外部网络之间的网络流量。
|
可让控制 Pod 之间或 Pod 与集群外部网络之间的网络流量。
|
||||||
|
|
||||||
|
<!--
|
||||||
|
### Admission control {#admission-control}
|
||||||
|
|
||||||
|
[Admission controllers](/docs/reference/access-authn-authz/admission-controllers/)
|
||||||
|
are plugins that intercept Kubernetes API requests and can validate or mutate
|
||||||
|
the requests based on specific fields in the request. Thoughtfully designing
|
||||||
|
these controllers helps to avoid unintended disruptions as Kubernetes APIs
|
||||||
|
change across version updates. For design considerations, see
|
||||||
|
[Admission Webhook Good Practices](/docs/concepts/cluster-administration/admission-webhooks-good-practices/).
|
||||||
|
-->
|
||||||
|
### 准入控制 {#admission-control}
|
||||||
|
|
||||||
|
[准入控制器](/zh-cn/docs/reference/access-authn-authz/admission-controllers/)是拦截
|
||||||
|
Kubernetes API 请求的插件,可以根据请求中的特定字段验证或修改请求。
|
||||||
|
精心设计这些控制器有助于避免 Kubernetes API 在版本更新过程中发生意外干扰。
|
||||||
|
有关设计注意事项,请参阅
|
||||||
|
[Admission Webhook 良好实践](/zh-cn/docs/concepts/cluster-administration/admission-webhooks-good-practices/)。
|
||||||
|
|
||||||
<!--
|
<!--
|
||||||
### Auditing
|
### Auditing
|
||||||
|
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue