Difference between revisions of "Kubernetes Authentication"

Revision as of 16:03, 25 August 2022

Service accounts
Users even though a normal user cannot be added via an API call, any user that presents a valid certificate signed by the cluster's certificate authority (CA) is considered authenticated.^[1]

Authorization: Bearer 31ada4fd-adec-460c-809a-9e56ceb75269

Revision as of 16:01, 25 August 2022 (edit) Welcome (talk \| contribs) ← Older edit		Revision as of 16:03, 25 August 2022 (edit) (undo) Welcome (talk \| contribs) Newer edit →
Line 2:		Line 2:

	* [[Service accounts]]		* [[Service accounts]]
−	* [[Users]] ~~Even~~ though a normal user cannot be added via an API call, any user that presents a valid [[certificate]] signed by the cluster's [[certificate authority]] (CA) is considered authenticated.<ref>https://kubernetes.io/docs/reference/access-authn-authz/authentication/#users-in-kubernetes</ref>	+	* [[Users]] even though a normal user cannot be added via an API call, any user that presents a valid [[certificate]] signed by the cluster's [[certificate authority]] (CA) is considered authenticated.<ref>https://kubernetes.io/docs/reference/access-authn-authz/authentication/#users-in-kubernetes</ref>