kubernetes
/
website
mirror of https://github.com/kubernetes/website.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
44,338 Commits 69 Branches 73 Tags 934 MiB
Commit Graph

220 Commits

Author SHA1 Message Date
Kubernetes Prow Robot 430dad213e
Merge pull request #42486 from raesene/main 
Kubernetes Hardening Guide Section on Authentication Mechanisms
 2023-09-18 10:22:31 -07:00
SomPandey 0e9e6affd3 fix broken link 2023-09-07 16:47:01 +05:30
MeenuyD 1a3cf0a7fa
Change text in Pod Security Admission metrics (#42856) 
* Change text in Pod Security Admission metrics

* remove changes from the metrics.md file
 2023-09-03 13:05:47 -07:00
Kubernetes Prow Robot bf75860f4d
Merge pull request #41814 from ugur99/ugur-develop 
List metrics that relate to Pod security admission
 2023-09-03 10:19:46 -07:00
Rory McCune 8ed2edd0e2 change serviceaccount wording 2023-08-27 09:31:11 +01:00
Rory McCune 076c879c70
Update content/en/docs/concepts/security/hardening-guide/authentication-mechanisms.md 
Co-authored-by: Qiming Teng <tengqm@outlook.com>
 2023-08-27 09:28:51 +01:00
Arhell 5f17fd8fb3 [en] typo secrets-good-practices.md 2023-08-22 03:07:58 +03:00
Dudi Varaprasad eee06d1b81
Add whitespace into “Good practices for Kubernetes Secrets” (#42650) 
* Update secrets-good-practices.md

changed caution as per docs 
https://kubernetes.io/docs/contribute/style/style-guide/#caution

* Update secrets-good-practices.md

added spaces as per style guide https://kubernetes.io/docs/contribute/style/style-guide/#caution
 2023-08-20 19:33:22 -07:00
Rory McCune 0761ef8e19
Update content/en/docs/concepts/security/hardening-guide/authentication-mechanisms.md 
Co-authored-by: Tim Bannister <tim@scalefactory.com>
 2023-08-19 18:28:41 +01:00
Rory McCune 3dd0bd16ba sentence case, wrapping and fixes from comments 2023-08-19 15:37:26 +01:00
Rory McCune 1e7a4eb633 Initial commit of Draft Kubernetes Hardening Guide Section on Authentication Mechanisms 2023-08-10 13:39:03 +01:00
Deepak bae7a10d64
attached correct link to the documentation 2023-08-02 18:54:14 +05:30
windsonsea ca08498f33 Provide a consistent appearance to bullets 2023-07-25 09:23:22 +08:00
Marcelo Giles 3581bb036d
Reword seccomp paragraph to remove alpha feature reference 
Fix capitalization
 2023-07-09 09:46:29 -07:00
Ugur b773649fb2 improvement psa document fix 
Signed-off-by: Ugur <ugurozturk918@gmail.com>
 2023-06-30 16:20:31 +02:00
Ugur 26f72a7358 improvement psa document 
Signed-off-by: Ugur <ugurozturk918@gmail.com>
 2023-06-30 13:09:21 +02:00
Michael 49135cefb8 Tweak line wrappings in /services-networking/ingress.md 2023-06-01 21:38:11 +08:00
Kubernetes Prow Robot 821ca22ac1
Merge pull request #40915 from mrgiles/37738_securing_cluster_checklist_align 
Add links between Securing a Cluster and Security Checklist for alignment
 2023-05-15 13:45:34 -07:00
Kubernetes Prow Robot eb7c049f04
Merge pull request #40376 from dtzar/patch-1 
clarify Windows privileged containers feature enablement
 2023-05-07 03:51:16 -07:00
niranjandarshann 057766eed7 updated link 2023-05-02 00:35:47 +05:30
Marcelo Giles 19a3dc0f6f
Add links between securing cluster and security checklist 2023-04-30 23:28:52 -07:00
niranjandarshann d8a6fd602c fixed broken link 2023-04-28 22:39:33 +05:30
David Tesar 8f3790c3a9
clarify Windows privileged containers feature enablement 2023-04-07 10:50:25 -07:00
Kubernetes Prow Robot 7b7fa2c8ec
Merge pull request #38874 from sftim/20230110_add_logs_api_to_security_checklist 
Add /logs API to security checklist
 2023-04-03 08:31:51 -07:00
Hiroki Takatsuka 47319756be
fix links in service-accounts.md 2023-03-28 14:48:04 +09:00
Shubham 458c0e3b26
Improvement: Added the Note for External applications. (#39691) 
* Improvement: Added the word External applications.

* Added the Note for External Applications.

* Modify the note
 2023-03-21 20:08:36 -07:00
Tim Bannister 52bb8f9282 Add /logs API to security checklist 
It's best to disable this API, which is deprecated at the time of
writing.

Co-authored-by: Jordan Liggitt <jordan@liggitt.net>
 2023-03-16 17:38:38 +00:00
Kubernetes Prow Robot da84dd8419
Merge pull request #39436 from sftim/20230213_tweak_sa_concept 
Fix wording, punctuation and Markdown for ServiceAccount concept page
 2023-02-14 15:53:41 -08:00
Kubernetes Prow Robot ee4b88ed37
Merge pull request #37733 from sftim/20221105_update_docs_podsecuritypolicy_removal 
Update documentation for PodSecurityPolicy removal
 2023-02-14 12:55:51 -08:00
Tim Bannister 96d49317a2
Fix wording for ServiceAccount concept 
Co-authored-by: Qiming Teng <tengqm@outlook.com>
Co-authored-by: Shannon Kularathna <ax3shannonkularathna@gmail.com>
 2023-02-14 09:17:03 +00:00
Tim Bannister cb5a8930dc
Fix broken anchor 2023-02-14 09:16:57 +00:00
Shannon Kularathna 9eb2767333
Add a missing anchor pound sign 2023-02-13 12:49:20 -05:00
Kubernetes Prow Robot b1f18bfa9b
Merge pull request #38289 from shannonxtreme/service-account 
Add a new concept page for service accounts
 2023-02-13 09:37:29 -08:00
Shannon Kularathna 7cb6d1eb35 Add a new concept page for service accounts 
Also add a glossary definition for JWTs

Co-authored-by: Tim Bannister <tim+github@scalefactory.com>
Co-authored-by: Jordan Liggitt <jordan@liggitt.net>
Co-authored-by: stlaz <https://github.com/stlaz>
 2023-02-13 17:29:12 +00:00
zhuzhenghao 42e746a379 Clean up api-server-bypass-risks.md 2023-02-06 09:55:04 +08:00
Rita Zhang fe12a4054b
Update PSS - HostPorts should be disallowed 
Signed-off-by: Rita Zhang <rita.z.zhang@gmail.com>
 2023-01-30 13:12:45 -08:00
Tim Bannister bb85d62752 Update docs for PodSecurityPolicy removal 2023-01-24 22:24:09 +00:00
Mike Waychison d0779881e6 Further updates to clarify language 2023-01-19 15:32:18 -05:00
Mike Waychison 5c9af80d8c
Update content/en/docs/concepts/security/rbac-good-practices.md 
Co-authored-by: Tim Bannister <tim@scalefactory.com>
 2023-01-19 15:16:19 -05:00
Mike Waychison cc56241ccd
Update content/en/docs/concepts/security/rbac-good-practices.md 
Co-authored-by: Tim Bannister <tim@scalefactory.com>
 2023-01-19 15:13:47 -05:00
Mike Waychison d11408b9d9 Update RBAC Good Practices for PersistentVolumes 
The docs previously referred to the reader to the now defunct PodSecurityPolicy
page to explain how PersistentVolumes can be a path of privilege escalation,
burrying the lede.

Now that PodSecurityPolicy is gone, update this bit to actually explain that it
it is unfettered access to creating hostPath-typed PersistentVolumes that are
a problem. Some words lifted from the 1.24 PodSecurityPolicy docs.

Signed-off-by: Mike Waychison <mike@waychison.com>
 2023-01-19 13:45:50 -05:00
Qiming Teng a437285212 Fix nits in markdown links 
This PR fixes a few "bad links" identified by the `scripts/linkchecker.py` script.
 2022-12-22 08:45:10 +08:00
Oscar Utbult 61b13a19d0 [en] fix quotation mark in multi-tenancy page 2022-12-12 09:55:49 +01:00
Sascha Grunert f8a2d2319a
Add documentation about signed Kubernetes artifacts 
Signed-off-by: Sascha Grunert <sgrunert@redhat.com>
 2022-11-28 12:05:11 +01:00
Kubernetes Prow Robot aaaa6303f4
Merge pull request #37731 from sftim/20221105_tweak_psp_removal_page 
Tweak page about PodSecurityPolicy removal
 2022-11-08 11:14:19 -08:00
Tim Bannister 4e006c898d Tweak page about PSP removal 
- Remove reviewers (feature was removed)
- Use semi-custom Docsy callout to note the removal
- Stop stating that the API is deprecated; it's now actually removed.
 2022-11-05 18:22:27 +00:00
Abigail McCarthy 3174fdf2d4 Adjust page weights for /docs/concepts section 
Changes the page weights of the index files for folders in the /docs/concepts folder. There were some overlapping weights and weights that were close together.
 2022-11-04 10:13:53 -04:00
Christopher Negus 0f9b65b429 Add page weights to concepts -> security pages 2022-10-24 19:02:52 +00:00
Arhell 05a17c16fc [en] fix typo secrets-good-practices.md 2022-10-05 01:31:49 +03:00
Kubernetes Prow Robot 91ecbb977c
Merge pull request #36805 from harshchauhan1988/patch-2 
Adding recommendation for network isolation
 2022-09-30 06:54:28 -07:00