Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/sighupio/permission-manager
Permission Manager is a project that brings sanity to Kubernetes RBAC and Users management, Web UI FTW
https://github.com/sighupio/permission-manager
admin dashboard hacktoberfest k8s kubeconfig kubernetes namespace oss rbac sighup user-management
Last synced: 6 days ago
JSON representation
Permission Manager is a project that brings sanity to Kubernetes RBAC and Users management, Web UI FTW
- Host: GitHub
- URL: https://github.com/sighupio/permission-manager
- Owner: sighupio
- License: bsd-3-clause
- Created: 2019-10-18T14:48:29.000Z (about 5 years ago)
- Default Branch: main
- Last Pushed: 2024-05-12T17:36:11.000Z (7 months ago)
- Last Synced: 2024-10-29T18:05:28.370Z (about 1 month ago)
- Topics: admin, dashboard, hacktoberfest, k8s, kubeconfig, kubernetes, namespace, oss, rbac, sighup, user-management
- Language: TypeScript
- Homepage: https://sighup.io/
- Size: 72.7 MB
- Stars: 1,304
- Watchers: 28
- Forks: 172
- Open Issues: 33
-
Metadata Files:
- Readme: README.md
- License: LICENSE.md
Awesome Lists containing this project
- awesome-repositories - sighupio/permission-manager - Permission Manager is a project that brings sanity to Kubernetes RBAC and Users management, Web UI FTW (TypeScript)
- awesome-k8s-resources - Permission manager - Permission Manager is an application developed by SIGHUP that enables a super-easy and user-friendly RBAC management for Kubernetes. (Tools and Libraries / Security and Compliance)
- awesome-cloud-native - permission-manager - Permission Manager is a project that brings sanity to Kubernetes RBAC and Users management, Web UI FTW. (Security)
README
# Permission manager
![flow](./docs/assets/flow.gif)
Welcome to the **Permission Manager**! :tada: :tada:
[![Build Status](https://ci.sighup.io/api/badges/sighupio/permission-manager/status.svg)](https://ci.sighup.io/sighupio/permission-manager)
![Release](https://img.shields.io/github/v/release/sighupio/permission-manager?label=PM)
![Slack](https://img.shields.io/badge/slack-@kubernetes/fury-yellow.svg?logo=slack)
![License](https://img.shields.io/github/license/sighupio/permission-manager)Permission Manager is an application developed by [SIGHUP](https://sighup.io) that enables a super-easy and user-friendly **RBAC management for Kubernetes**. If you are looking for a simple and intuitive way of managing your users within a Kubernetes cluster, this is the right place.
With Permission Manager, you can create users, assign namespaces/permissions, and distribute Kubeconfig YAML files via a nice&easy web UI.
## Screenshots
### First Page
![First Page](docs/assets/first-page.png)
### Creating a user
![Creating a user](docs/assets/create-user.png)
### Creating a user - Summary
![Create user Sumary](docs/assets/create-user-summary.png)
### User's Kubeconfig
![User's Kubeconfig](docs/assets/users-kubeconfig.png)
### Deleting a user
![Deleting a user](docs/assets/delete-user.png)
## Installation
To deploy and run the Permission Manager on your cluster, follow the [installation guide](docs/installation.md)
## Development Setup
We love contributions from the community :heart:.
Learn [how-to-contribute](docs/how-to-contribute.md)## FAQ
### How it works
The application allows us to define and select permission standard templates (those defining who can do what, within a namespace or globally) and associate them with all the users you might want to create.
The template system is an abstraction over Cluster-Roles, RoleBinding, and ClusterRolesBindigs.
### What is a template
A template is a ClusterRole with a prefix
`template-namespaced-resources___`
for example
`template-namespaced-resources___developer`#### Why a template is not a CRD
When we started the development of this project, a template was one-to-one to a `clusterrole`, the usage of a CRD looked overkill. This will obviously change in future to avoid polluting `clusterroles` and will allow us to have a more precise encapsulation of what is owned by the permission manager.
### How to add a new template
Create a clusterrole starting with `template-namespaced-resources___` and apply it.
#### Default templates
`developer` and `operation` default templates are located at deployments/kubernetes/seeds/seed.yml
### What is a user
A user is a custom resource of kind `permissionmanagerusers.permissionmanager.user`
## Commercial & Enterprise Support
Are you using Permission Manager in your clusters and looking for commercial support? Let us know and [get in touch](mailto:[email protected])