Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from Hands-On Microservices with Kubernetes Build, deploy, and manage scalable microservices on Kubernetes

Product type Paperback

Published in Jul 2019

Publisher

ISBN-13 9781789805468

Length 502 pages

Edition 1st Edition

Languages

Tools

Kubernetes

Concepts

Containerization

Author (1):

Gigi Sayfan

View More author details

Table of Contents (16) Chapters

Preface

1. Introduction to Kubernetes for Developers FREE CHAPTER

2. Getting Started with Microservices

3. Delinkcious - the Sample Application

4. Setting Up the CI/CD Pipeline

5. Configuring Microservices with Kubernetes

6. Securing Microservices on Kubernetes

7. Talking to the World - APIs and Load Balancers

8. Working with Stateful Services

9. Running Serverless Tasks on Kubernetes

10. Testing Microservices

11. Deploying Microservices

12. Monitoring, Logging, and Metrics

13. Service Mesh - Working with Istio

14. The Future of Microservices and Kubernetes

15. Other Books You May Enjoy

Leave a review - let other readers know what you think

Managing permissions with RBAC

RBAC is a mechanism that's used to manage access to Kubernetes resources. With effect from Kubernetes 1.8, RBAC is considered stable. Start the API server with --authorization-mode=RBAC to enable it. RBAC works as follows when a request to the API server comes in:

First, it authenticates the request via the user credentials or service account credentials of the caller (returns 401 unauthorized if it fails).
Next, it checks the RBAC policies to verify whether the requester is authorized to perform the operation on the target resource (returns 403 forbidden if it fails).
Finally, it runs through an admission controller that may reject or modify the request for various reasons.

The RBAC model consists of identities (user and service accounts), resources (Kubernetes objects), verbs (standard actions such as get, list, and create), roles, and role...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at €18.99/month. Cancel anytime

Authors (1)

Gigi Sayfan

Gigi Sayfan has been developing software for 25+ years in domains as diverse as instant messaging, morphing, chip fabrication process control, embedded multimedia applications for game consoles, brain-inspired ML, custom browser development, web services for 3D distributed game platforms, IoT sensors, virtual reality, and genomics. He has written production code in languages such as Go, Python, C, C++, C#, Java, Delphi, JavaScript, and even Cobol and PowerBuilder for operating systems such as Windows (3.11 through 7), Linux, macOS, Lynx (embedded), and Sony PlayStation. His technical expertise includes databases, low-level networking, distributed systems, containers, unorthodox user interfaces, modern web applications, and general SDLC.

See other products by Gigi Sayfan