kubernetes
/
website
mirror of https://github.com/kubernetes/website.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
48,730 Commits 69 Branches 73 Tags 884 MiB
Commit Graph

581 Commits

Author SHA1 Message Date
Tim Bannister 8a122ff9ca Fix page title 
Omit “Overview” to match the authentication topic.
 2024-04-23 01:42:43 +01:00
Tim Bannister 5fdccf9f2f Revise advice about authz modes 2024-04-23 01:42:42 +01:00
Rita Zhang f833f4f671 Revise authz page 
Improve how we explain authz, and remove some existing duplication.

Co-Authored-By: Rita Zhang <rita.z.zhang@gmail.com>
 2024-04-23 01:42:20 +01:00
Tim Bannister 9f327512c6 Reorder authn/authz pages 
Group topics together, in order of how these happen within Kubernetes'
API server's processing chain (authn, then authz, then admission
control).
 2024-04-23 01:42:18 +01:00
Vyom-Yadav 37b0b3ed72
Merge remote-tracking branch 'upstream/main' into dev-1.30 2024-04-10 23:04:57 +05:30
Anish Ramasekar ba458ace13
Add certificateAuthority in structured authn docs 
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
 2024-04-09 14:31:37 -07:00
Daniel Chan cdf1ed1236 Merge remote-tracking branch 'upstream/main' into dev-1.30 
Merge main into dev-1.30 to keep in sync
 2024-04-02 10:05:03 -04:00
James Munnelly 00d526659e
Make KEP-4193 documentation updates (#45292) 
* KEP-4193: beta documentation updates

* Apply suggestions from code review

Co-authored-by: Jordan Liggitt <jordan@liggitt.net>

* Apply suggestions from code review

Co-authored-by: Dipesh Rawat <rawat.dipesh@gmail.com>

* include example JTI and node-name/uid output

* Update service-accounts-admin.md

Co-authored-by: Jordan Liggitt <jordan@liggitt.net>

---------

Co-authored-by: Jordan Liggitt <jordan@liggitt.net>
Co-authored-by: Dipesh Rawat <rawat.dipesh@gmail.com>
 2024-03-26 13:45:05 -07:00
Anish Ramasekar 3ef1d0bb84
Fix docs for authentication: s/errors/error 2024-03-24 09:56:05 -07:00
Kubernetes Prow Robot 864ac8bec6
Merge pull request #45108 from aramase/aramase/d/kep_3331_beta_docs 
Add docs for Structured Authn beta
 2024-03-24 03:08:39 -07:00
Anish Ramasekar c4e3177ff3
Add feature gate metadata for structured authz config 
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
 2024-03-19 14:02:50 -07:00
Anish Ramasekar b35e434193
Add docs for Structured Authn beta 
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
 2024-03-19 13:51:32 -07:00
Dipesh Rawat c889d9b251
Add metadata to use mechanism for API reference links 2024-03-14 14:50:24 +00:00
Kubernetes Prow Robot 0f8e1fadea
Merge pull request #45249 from cici37/3488 
[KEP-3488]Promoting ValidatingAdmissionPolicy to GA
 2024-03-12 17:05:49 -07:00
Kubernetes Prow Robot b8514fcb5e
Merge pull request #45138 from ritazh/kep_3221_beta_docs 
Add docs for Structured Authz beta
 2024-03-12 10:59:04 -07:00
Igor Velichkovich 4bffa3c7fa Mark feature AdmissionWebhookMatchConditions to stable in 1.30 2024-03-12 10:14:31 -07:00
cici37 0fc8d236e0 Promote ValidatingAdmissionPolicy to GA 2024-03-11 22:48:54 +00:00
Rita Zhang a556984b94
Add docs for Structured Authz beta 
Signed-off-by: Rita Zhang <rita.z.zhang@gmail.com>
 2024-03-11 08:27:41 -07:00
Oluebube Princes Egbuna e1465e035a Merge remote-tracking branch 'upstream/main' into dev-1.30 2024-02-20 11:46:04 +01:00
Tim Bannister e4731338d3 Switch some feature-state shortcodes to be data driven 
When the feature gates graduate (or get deprecated), the associated
shortcode will update automatically.

Co-authored-by: Dipesh Rawat <rawat.dipesh@gmail.com>
 2024-02-16 12:49:31 +00:00
mtardy ca4dc02375 Remove the SecurityContextDeny admission plugin documentation 2024-02-14 16:39:37 +01:00
Saketh Kalaga 121d47db90
Update authentication.md 
Azure Active Directory is now Microsoft Entra ID.
Changing for the sake of correctness.
 2024-01-19 01:06:19 +05:30
hunshcn bcc55ae7c9
fix outdated link/anchor 
Signed-off-by: hunshcn <hunsh.cn@gmail.com>
 2024-01-03 15:00:11 +08:00
Takashiidobe d536e46dbd fix typos 2023-12-24 21:00:53 -05:00
Anish Ramasekar fcfeeac989
fix value in structured authn config example 
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
 2023-12-13 21:43:11 +00:00
drewhagen deaf1b920a Merge remote-tracking branch 'upstream/main' into dev-1.29 2023-11-29 15:33:49 -06:00
Suruchi Kumari c0a72d25d8
added doc for setting up cloud provider kubectl auth via plugin 
Signed-off-by: GitHub <noreply@github.com>
 2023-11-29 13:26:04 +00:00
Kubernetes Prow Robot 7c2f5c4583
Merge pull request #43397 from aramase/aramase/d/kep_3331_v1alpha1_docs_v1.29 
add docs for StructuredAuthenticationConfig v1alpha1
 2023-11-28 09:47:41 +01:00
Anish Ramasekar 74caa0daaa
review feedback 
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
 2023-11-27 20:03:23 +00:00
Kubernetes Prow Robot 123973c2e8
Merge pull request #41892 from palnabarun/authz-config-docs 
Add docs for Authorization Configuration
 2023-11-27 13:59:40 +01:00
Nabarun Pal 21ac70ee24
Wrap markdown text 
Signed-off-by: Nabarun Pal <pal.nabarun95@gmail.com>
 2023-11-27 16:16:40 +05:30
Nabarun Pal 03e2976d90
Add more context to downgrade example 
Signed-off-by: Nabarun Pal <pal.nabarun95@gmail.com>
 2023-11-24 12:03:35 +05:30
Kat Cosgrove 2d9fbc1c7e
Merge remote-tracking branch 'upstream/main' into dev-1.29 2023-11-22 22:07:26 +00:00
Kubernetes Prow Robot 421821d5fa
Merge pull request #43563 from yt2985/dev-1.29 
Add LegacyServiceAccountTokenCleanUp feature in beta
 2023-11-22 18:47:18 +01:00
Nabarun Pal 10568634b5
Update from code review 
Signed-off-by: Nabarun Pal <pal.nabarun95@gmail.com>
 2023-11-22 10:22:33 +05:30
Anish Ramasekar 01e6f317e3
add docs for StructuredAuthenticationConfig v1alpha1 
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
 2023-11-21 19:28:05 +00:00
Taahir Ahmed 6dd3091e55 ClusterTrustBundles: Document projected volumes 2023-11-21 09:22:39 -08:00
chansuke 244c6353bd Improve documentation for `kubernetes.io/enforce-mountable-secrets` annotation on `ServiceAccount` 2023-11-22 00:46:34 +09:00
Nabarun Pal 5627db2720
add documentation for AuthorizationConfiguration 
Signed-off-by: Nabarun Pal <pal.nabarun95@gmail.com>
 2023-11-20 08:58:49 +05:30
Oluebube Princes Egbuna f893a19ee6 Resolved merge conflict when merging main into dev-1.29 branch 2023-11-19 16:02:40 +01:00
windsonsea 676f862137 Clean up /access-authn-authz/authentication.md 2023-11-17 21:32:04 +08:00
tinatingyu bcb527b5be Add LegacyServiceAccountTokenCleanUp feature to beta 2023-11-16 17:21:26 +00:00
Monis Khan 42c9e4e20f
KEP-4193: bound service account token improvements 
Signed-off-by: Monis Khan <mok@microsoft.com>
 2023-11-16 08:48:59 -05:00
steve-hardman 20e6cba5fe
Fix broken link in "Validating Admission Policy" page (#43893) 
* Fix typo

* Fix typo

Co-authored-by: Dipesh Rawat <rawat.dipesh@gmail.com>

---------

Co-authored-by: Dipesh Rawat <rawat.dipesh@gmail.com>
 2023-11-14 08:02:32 +01:00
Cici Huang fc92afd819 Remove the escape. 2023-10-30 16:38:15 +00:00
Shubham fba4f6cb2f
Removed outdated information for SA and Added the Note for Manually created Secret API objects. (#43451) 
* Removed outdated information for SA and Added the Note for Manually created Secret API objects.

* Modified the Note.

* Simplified the Note.
 2023-10-26 02:50:01 +02:00
Tony Gorman 01d9e07e27
Update admission-controllers.md 
Sentence seems grammatically incorrect
 2023-10-17 17:32:46 +01:00
Kubernetes Prow Robot 84fd32d13c
Merge pull request #41682 from Shubham82/Add_subj_command_option 
Add -subj Command Option.
 2023-10-10 09:45:22 +02:00
Michael 318ff2e797 Clean up kubelet-tls-bootstrapping.md 2023-10-07 09:02:41 +08:00
Qiming Teng 29b1f8f482 Tweak line wrappings for the node authorization page 2023-10-02 17:11:14 +08:00