https://github.com/woodprogrammer/k8s-config-generator
https://github.com/woodprogrammer/k8s-config-generator
docker kubernetes linux shell
Last synced: 16 days ago
JSON representation
- Host: GitHub
- URL: https://github.com/woodprogrammer/k8s-config-generator
- Owner: WoodProgrammer
- Created: 2020-06-13T23:46:13.000Z (almost 6 years ago)
- Default Branch: master
- Last Pushed: 2020-06-14T10:43:52.000Z (almost 6 years ago)
- Last Synced: 2025-08-31T22:27:23.803Z (8 months ago)
- Topics: docker, kubernetes, linux, shell
- Language: Shell
- Size: 1.95 KB
- Stars: 1
- Watchers: 2
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# Kube Config generator
Kubernetes supports couple of option to authenticate the users, in kops you are start with credenetials of admin.
You can generate user certificated by cluster PKI files that shown as below.
```sh
$ aws s3 cp s3://$KOPS_STATE_STORE/$CLUSTERNAME/pki/private/ca/$KEY ca.key
$ aws s3 cp s3://$KOPS_STATE_STORE/$CLUSTERNAME/pki/issued/ca/$CERT ca.crt
```
If you want to create user certificates you can run this script to do that.
`./main.sh `
## Rbac
You can specify user capabilities via RBAC objects shown as below:
```yaml
---
apiVersion: rbac.authorization.k8s.io/v1beta1
kind: Role
metadata:
namespace: jenkins
name: pod-list
rules:
- apiGroups: [""]
resources: ["pods"]
verbs: ["get","list"]
---
apiVersion: rbac.authorization.k8s.io/v1beta1
kind: RoleBinding
metadata:
name: role-binding
subjects:
- kind: User
name: ### Common Name in certificate
roleRef:
kind: Role
name: role-pod-list
apiGroup: rbac.authorization.k8s.io
```