isolated advanced audit for multi tenants in kubernetes cluster #61766
Labels
area/audit
kind/feature
Categorizes issue or PR as related to a new feature.
lifecycle/rotten
Denotes an issue or PR that has aged beyond stale and will be auto-closed.
sig/auth
Categorizes an issue or PR as relevant to SIG Auth.
Is this a BUG REPORT or FEATURE REQUEST?:
/kind feature
The advanced audit feature has become v1beta1 version now. It's a reasonable feature request for a cluster admin to distribute audit events to tenants.
I have implement a add-on to support this feature. But the community has expressed some disagreement because it exposes the service account to the third party.
ref:
https://docs.google.com/document/d/1woLGRoONE3EBVx-wTb4pvp4CI7tmLZ6lS26VTbosLKM/edit#heading=h.5ejmrg6cqbd3
This issue is addressed to ask for some good suggestions from community.
/cc @crassirostris @tallclair @hzxuzhonghu @sttts @soltysh @ericchiang
The text was updated successfully, but these errors were encountered: