91d5229b9c
Add an admin service account and give it the cluster role. It can be used for access apps with token authentication like the kubernetes-dashboard. Remove the cluster role from the dashboard service account. Change-Id: I7980c0e72b0d71921e42af7338d02b8a1e563c34 Closes-Bug: #1766284
9 lines
379 B
YAML
9 lines
379 B
YAML
---
|
|
security:
|
|
- |
|
|
k8s_fedora Remove cluster role from the kubernetes-dashboard account. When
|
|
accessing the dashboard and skip authentication, users login with the
|
|
kunernetes-dashboard service account, if that service account has the
|
|
cluster role, users have admin access without authentication. Create an
|
|
admin service account for this use case and others.
|