openstack/tacker
Code Issues Proposed changes
Files
57902730d633e73c1250539afb5762bef1a03493
tacker/roles/setup-k8s-oidc/files/cluster_role_binding.yaml
Qibin Yao 57902730d6 Add OpenID Connect Token Auth for k8s 
This patch adds openid token auth support when calling k8s APIs.

Openid token auth of k8s relies on an external openid provider,
and Keycloak acts as the openid provider in this implementation.

Implements: blueprint support-openid-k8s-vim
Change-Id: Ie5e080a20cba3ba0ed514ede7955eb16729d797c
2022-09-12 01:26:53 +00:00

12 lines
251 B
YAML
Raw Blame History

kind: ClusterRoleBinding
apiVersion: rbac.authorization.k8s.io/v1
metadata:
name: oidc-cluster-admin-binding
roleRef:
kind: ClusterRole
name: cluster-admin
apiGroup: rbac.authorization.k8s.io
subjects:
- kind: User
name: end-user
View Git Blame Copy Permalink