starlingx/docs
Code Issues Proposed changes
Files
c2b8b609edeb1acd2788336871e606d8cc935f4c
docs/doc/source/security/index.rst
Ron Stone c2b8b609ed TOC structure changes 
Conditionalized use of "Contents" heading in Kubernetes and
OpenStack subindexes.
Make "Contents" a common include, overwritable per book
Conditionally pull in kubernetes and OpenStack descriptions from
each book index to kubernetes/index and openstack/index for partner
use
Deleted index.rs1 topics from DITA import

Signed-off-by: Ron Stone <ronald.stone@windriver.com>
Change-Id: I857a1dbb567a0bf609b449e8260b2f8801a339fb
Signed-off-by: Ron Stone <ronald.stone@windriver.com>
(cherry picked from commit 98d01b5049)
2021-09-23 12:01:07 +00:00

856 B
Raw Blame History

Security

Kubernetes

security encompasses a broad number of features.

  • support on all external interfaces
  • Kubernetes service accounts and policies for authentication and authorization of Kubernetes API / CLI / GUI
  • Encryption of Kubernetes Secret Data at Rest
  • Keystone authentication and authorization of StarlingX API / CLI / GUI
  • Barbican is used to securely store secrets such as BMC user passwords
  • Networking policies / Firewalls on external APIs
  • secureboot
  • Signed software updates

Contents:

kubernetes/index

OpenStack

openstack/index