You're reading from The Kubernetes Bible The definitive guide to deploying and managing Kubernetes across major cloud platforms

Product type Paperback

Published in Feb 2022

Publisher Packt

ISBN-13 9781838827694

Length 680 pages

Edition 1st Edition

Tools

Kubernetes

Concepts

Containerization

Authors (3):

Nassim Kebbani

Piotr Tylenda

Russ McKendrick

View More author details

Table of Contents (28) Chapters

Preface

1. Section 1: Introducing Kubernetes

2. Chapter 1: Kubernetes Fundamentals FREE CHAPTER

3. Chapter 2: Kubernetes Architecture – From Docker Images to Running Pods

4. Chapter 3: Installing Your First Kubernetes Cluster

5. Section 2: Diving into Kubernetes Core Concepts

6. Chapter 4: Running Your Docker Containers

7. Chapter 5: Using Multi-Container Pods and Design Patterns

8. Chapter 6: Configuring Your Pods Using ConfigMaps and Secrets

9. Chapter 7: Exposing Your Pods with Services

10. Chapter 8: Managing Namespaces in Kubernetes

11. Chapter 9: Persistent Storage in Kubernetes

12. Section 3: Using Managed Pods with Controllers

13. Chapter 10: Running Production-Grade Kubernetes Workloads

14. Chapter 11: Deployment – Deploying Stateless Applications

15. Chapter 12: StatefulSet – Deploying Stateful Applications

16. Chapter 13: DaemonSet – Maintaining Pod Singletons on Nodes

17. Section 4: Deploying Kubernetes on the Cloud

18. Chapter 14: Kubernetes Clusters on Google Kubernetes Engine

19. Chapter 15: Launching a Kubernetes Cluster on Amazon Web Services with Amazon Elastic Kubernetes Service

20. Chapter 16: Kubernetes Clusters on Microsoft Azure with Azure Kubernetes Service

21. Section 5: Advanced Kubernetes

22. Chapter 17: Working with Helm Charts

23. Chapter 18: Authentication and Authorization on Kubernetes

24. Chapter 19: Advanced Techniques for Scheduling Pods

25. Chapter 20: Autoscaling Kubernetes Pods and Nodes

26. Chapter 21: Advanced Traffic Routing with Ingress

27. Other Books You May Enjoy

Authorization and introduction to RBAC

While authentication is about determining whether a given user of a system is indeed who they claim to be, authorization determines what the user can and cannot do or access. As such, authorization usually complements authentication – these two processes are used together to provide security for the system. Authentication is the first step in determining the identity of the user, whereas authorization is the next step when verifying if the user can perform the action they want to.

In the Kubernetes API server, authenticating a request results in a set of additional request attributes such as user, group, API request verb, or HTTP request verb. These are then passed further to authorization modules that, based on these attributes, answer whether the user is allowed to do the action or not. If the request is denied by any of the modules, the user will be presented with an HTTP status code of 403 (Forbidden).

Tip

This is an important...

The rest of the chapter is locked

You're reading from The Kubernetes Bible The definitive guide to deploying and managing Kubernetes across major cloud platforms

Table of Contents (28) Chapters

Authorization and introduction to RBAC

Unlock this book and the full library FREE for 7 days

Authors (3)

Personalised recommendations for you