Create John user in Kuberentes
Create John user in Kuberentes
Posted Updated 
By
1 min read
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
kubectl create role developer --verb=create,list,get,update,delete --resource pods --namespace development
kubectl create rolebinding john-role-binding --role developer --user john --namespace development
apiVersion: certificates.k8s.io/v1
kind: CertificateSigningRequest
metadata:
name: john
spec:
groups:
- system:authenticated
request: LS0t...
signerName: kubernetes.io/kube-apiserver-client
usages:
- client auth
:r! cat /root/CKA/john.csr | base64 | tr -d "\n"
kubectl get csr
kubectl certificate approve john
kubectl get csr/john -o yaml
kubectl get csr/john -o yaml -ojsonpath='{.status.certificate}'
kubectl get csr/john -o yaml -ojsonpath='{.status.certificate}' | base64 -d
kubectl get csr/john -o yaml -ojsonpath='{.status.certificate}' | base64 -d > CKA/john.crt
kubectl config set-credentials john --client-key=/root/CKA/john.key --client-certificate=/root/CKA/john.crt --embed-certs=true
kubectl config set-context john --cluster=kubernetes --user=john
kubectl config use-context john
kubectl get pods -n development
This post is licensed under CC BY 4.0 by the author.