github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
Files
e6acc08d96ff1fe23a82b29eb29f2dbaf42c44d6
kubernetes/hack/verify-flags
History
Kubernetes Submit Queue 6c5a187171 Merge pull request #33378 from deads2k/rbac-10-allow-token 
Automatic merge from submit-queue

add anytoken authenticator

Adds `--insecure-allow-any-token` as a flag to the API server to create an authenticator that will accept any bearer token and transform it into a user by parsing it out as `username/group1,group2,...`.

This gives an easy way to identify as a user and check permissions:
```bash
ALLOW_ANY_TOKEN=true hack/local-up-cluster.sh 
kubectl config set-cluster local-kube --server=https://localhost:6443 --insecure-skip-tls-verify=true
kubectl config set-credentials david --token=david/group1
kubectl config set-context local --cluster=local-kube --user=david
kubectl config use-context local
```

@kubernetes/sig-auth
2016-09-29 12:32:08 -07:00
..
.gitattributes
Mark known-flags to merge via union.
2016-06-08 15:59:35 -07:00
exceptions.txt
Merge pull request #33582 from aanm/fixing-local-cluster-up
2016-09-29 11:25:13 -07:00
excluded-flags.txt
Move kubemark, skew, upgrade, leak logic into hack/e2e.go
2016-08-09 14:04:19 -07:00
known-flags.txt
add anytoken authenticator
2016-09-29 14:14:06 -04:00