kubernetes

github/kubernetes

Fork 0

Commit Graph

Author	SHA1	Message	Date
Margo Crawford	74f5ed6b17	This introduces an Impersonate-Uid header to server side code. UserInfo contains a uid field alongside groups, username and extra. This change makes it possible to pass a UID through as an impersonation header like you can with Impersonate-Group, Impersonate-User and Impersonate-Extra. This PR contains: * Changes to impersonation.go to parse the Impersonate-Uid header and authorize uid impersonation * Unit tests for allowed and disallowed impersonation cases * An integration test that creates a CertificateSigningRequest using impersonation, and ensures that the API server populates the correct impersonated spec.uid upon creation.	2021-07-06 10:13:16 -07:00
David Eads	fd8e81eba4	remove csr v1beta1 usage	2021-03-02 15:31:21 -05:00
James Munnelly	d7e10f9869	Add Certificate signerName admission plugins	2020-02-27 15:50:14 +00:00

Author

SHA1

Message

Date

Margo Crawford

74f5ed6b17

This introduces an Impersonate-Uid header to server side code.

UserInfo contains a uid field alongside groups, username and extra.
This change makes it possible to pass a UID through as an impersonation header like you
can with Impersonate-Group, Impersonate-User and Impersonate-Extra.

This PR contains:

* Changes to impersonation.go to parse the Impersonate-Uid header and authorize uid impersonation
* Unit tests for allowed and disallowed impersonation cases
* An integration test that creates a CertificateSigningRequest using impersonation,
  and ensures that the API server populates the correct impersonated spec.uid upon creation.

2021-07-06 10:13:16 -07:00

David Eads

fd8e81eba4

remove csr v1beta1 usage

2021-03-02 15:31:21 -05:00

James Munnelly

d7e10f9869

Add Certificate signerName admission plugins

2020-02-27 15:50:14 +00:00

3 Commits