RBAC
You’ve probably noticed that in our minikube cluster, we have unlimited access and control over all resources and namespaces. While this is fine for learning purposes, when it comes to running and operating production systems, you’ll most likely need to restrict the access. This is where Kubernetes RBAC becomes very helpful.
Kubernetes RBAC
This is the main security mechanism in Kubernetes to ensure that users only have access to resources according to their assigned roles.
A few examples of what can be done with K8s RBAC:
- Restricting access to a specific namespace (for example, production namespace or namespace for a certain application) for a limited group of people (such as with an administrator role)
- Restricting access to be read-only for certain resources
- Restricting access to a certain group of resources (such as Pod, Service, Deployment, Secret, or anything else)
- Restricting access to an application that interacts with the Kubernetes...
