Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

https://github.com/sighupio/permission-manager

Permission Manager is a project that brings sanity to Kubernetes RBAC and Users management, Web UI FTW
https://github.com/sighupio/permission-manager

admin dashboard hacktoberfest k8s kubeconfig kubernetes namespace oss rbac sighup user-management

Last synced: 20 days ago
JSON representation

Permission Manager is a project that brings sanity to Kubernetes RBAC and Users management, Web UI FTW

Host: GitHub
URL: https://github.com/sighupio/permission-manager
Owner: sighupio
License: bsd-3-clause
Created: 2019-10-18T14:48:29.000Z (over 4 years ago)
Default Branch: main
Last Pushed: 2023-09-13T16:23:13.000Z (9 months ago)
Last Synced: 2024-04-14T11:07:13.036Z (2 months ago)
Topics: admin, dashboard, hacktoberfest, k8s, kubeconfig, kubernetes, namespace, oss, rbac, sighup, user-management
Language: TypeScript
Homepage: https://sighup.io/
Size: 72.7 MB
Stars: 1,234
Watchers: 27
Forks: 166
Open Issues: 33
Metadata Files:
- Readme: README.md
- License: LICENSE.md

Lists

awesome-k8s-resources - Permission manager - Permission Manager is an application developed by SIGHUP that enables a super-easy and user-friendly RBAC management for Kubernetes. (Tools and Libraries / Security and Compliance)
awesome-stars - permission-manager
awesome-stars - sighupio/permission-manager - Permission Manager is a project that brings sanity to Kubernetes RBAC and Users management, Web UI FTW (TypeScript)
awesome-repositories - sighupio/permission-manager - Permission Manager is a project that brings sanity to Kubernetes RBAC and Users management, Web UI FTW (TypeScript)
awesome-repositories - sighupio/permission-manager - Permission Manager is a project that brings sanity to Kubernetes RBAC and Users management, Web UI FTW (TypeScript)
awesome_k8s_resources - Permission manager - Permission Manager is an application developed by SIGHUP that enables a super-easy and user-friendly RBAC management for Kubernetes. (Tools and Libraries / Security and Compliance)
awesome-cloud-native - permission-manager - Permission Manager is a project that brings sanity to Kubernetes RBAC and Users management, Web UI FTW. (Security)
my-stars - sighupio/permission-manager - Permission Manager is a project that brings sanity to Kubernetes RBAC and Users management, Web UI FTW (TypeScript)

README

# Permission manager

![flow](./docs/assets/flow.gif)

Welcome to the **Permission Manager**! :tada: :tada:

[![Build Status](https://ci.sighup.io/api/badges/sighupio/permission-manager/status.svg)](https://ci.sighup.io/sighupio/permission-manager)
![Release](https://img.shields.io/github/v/release/sighupio/permission-manager?label=PM)
![Slack](https://img.shields.io/badge/slack-@kubernetes/fury-yellow.svg?logo=slack)
![License](https://img.shields.io/github/license/sighupio/permission-manager)

Permission Manager is an application developed by [SIGHUP](https://sighup.io) that enables a super-easy and user-friendly **RBAC management for Kubernetes**. If you are looking for a simple and intuitive way of managing your users within a Kubernetes cluster, this is the right place.

With Permission Manager, you can create users, assign namespaces/permissions, and distribute Kubeconfig YAML files via a nice&easy web UI.

## Screenshots

### First Page

![First Page](docs/assets/first-page.png)

### Creating a user

![Creating a user](docs/assets/create-user.png)

### Creating a user - Summary

![Create user Sumary](docs/assets/create-user-summary.png)

### User's Kubeconfig

![User's Kubeconfig](docs/assets/users-kubeconfig.png)

### Deleting a user

![Deleting a user](docs/assets/delete-user.png)

## Installation

To deploy and run the Permission Manager on your cluster, follow the [installation guide](docs/installation.md)

## Development Setup

We love contributions from the community :heart:.
Learn [how-to-contribute](docs/how-to-contribute.md)

## FAQ

### How it works

The application allows us to define and select permission standard templates (those defining who can do what, within a namespace or globally) and associate them with all the users you might want to create.

The template system is an abstraction over Cluster-Roles, RoleBinding, and ClusterRolesBindigs.

### What is a template

A template is a ClusterRole with a prefix

`template-namespaced-resources___`

for example
`template-namespaced-resources___developer`

#### Why a template is not a CRD

When we started the development of this project, a template was one-to-one to a `clusterrole`, the usage of a CRD looked overkill. This will obviously change in future to avoid polluting `clusterroles` and will allow us to have a more precise encapsulation of what is owned by the permission manager.

### How to add a new template

Create a clusterrole starting with `template-namespaced-resources___` and apply it.

#### Default templates

`developer` and `operation` default templates are located at deployments/kubernetes/seeds/seed.yml

### What is a user

A user is a custom resource of kind `permissionmanagerusers.permissionmanager.user`

## Commercial & Enterprise Support

Are you using Permission Manager in your clusters and looking for commercial support? Let us know and [get in touch](mailto:[email protected])