github
/
k3s
mirror of https://github.com/k3s-io/k3s
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
k3s/hack/verify-flags
History
Kubernetes Submit Queue 6c5a187171 Merge pull request #33378 from deads2k/rbac-10-allow-token 
Automatic merge from submit-queue

add anytoken authenticator

Adds `--insecure-allow-any-token` as a flag to the API server to create an authenticator that will accept any bearer token and transform it into a user by parsing it out as `username/group1,group2,...`.

This gives an easy way to identify as a user and check permissions:
```bash
ALLOW_ANY_TOKEN=true hack/local-up-cluster.sh 
kubectl config set-cluster local-kube --server=https://localhost:6443 --insecure-skip-tls-verify=true
kubectl config set-credentials david --token=david/group1
kubectl config set-context local --cluster=local-kube --user=david
kubectl config use-context local
```

@kubernetes/sig-auth
 		2016-09-29 12:32:08 -07:00
..
.gitattributes Mark known-flags to merge via union. 2016-06-08 15:59:35 -07:00
exceptions.txt Merge pull request #33582 from aanm/fixing-local-cluster-up 2016-09-29 11:25:13 -07:00
excluded-flags.txt Move kubemark, skew, upgrade, leak logic into hack/e2e.go 2016-08-09 14:04:19 -07:00
known-flags.txt add anytoken authenticator 2016-09-29 14:14:06 -04:00