Join GitHub today
GitHub is home to over 40 million developers working together to host and review code, manage projects, and build software together.Sign up
kubernetes rbac rules not enforced #3694
Steps to reproduce the behavior
Expected behavior: Kubernetes should deny access
Kubernetes allows access
This works correctly with all other Kubernetes clusters I've tried, just not the one packaged with DockerForMac. Is there any chance you've disabled RBAC somehow?
I'm happy to write up a more complete bash script to reproduce the issue, but wanted to make sure this wasn't a known issue.
When we first added k8s inside Docker Desktop, we added a rule to promote all service accounts to be cluster admin. It helps people who install helm to start easily and to forget security. Maybe it's time to remove it (or at least make it optional).
Can you try to delete the ClusterRoleBinding named