New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[StructuredAuthorizationConfiguration] Add --authorization-config flag and guard it using a Feature Gate #120154
[StructuredAuthorizationConfiguration] Add --authorization-config flag and guard it using a Feature Gate #120154
Conversation
/retitle [WIP][StructuredAuthorizationConfiguration] Add --authorization-config flag and guard it using a Feature Gate |
692926d
to
df3910b
Compare
cea51aa
to
813c109
Compare
/retest |
0840925
to
75850cb
Compare
/test pull-kubernetes-conformance-kind-ipv6-parallel |
/retest |
/lgtm |
LGTM label has been added. Git tree hash: fbf75ab708c6782fc7a62056a119ae4ef9e17660
|
Hmm, the bot thinks this needs a rebase… does it? |
Signed-off-by: Nabarun Pal <pal.nabarun95@gmail.com>
75850cb
to
a50d83c
Compare
This PR shouldn't have the |
What are the guidelines for manually removing the |
/lgtm |
LGTM label has been added. Git tree hash: 55df05d89553e3bd868b03a3b31333ead8ab6674
|
Changelog suggestion kube-apiserver: added `--authorization-config` command line argument for reading a configuration file containing a serialized apiserver.config.k8s.io/v1alpha1 AuthorizationConfiguration. The `--authorization-config` argument is mutually exclusive with `--authorization-modes` and the `--authorization-webhook-*` arguments. The (alpha) `StructuredAuthorizationConfiguration` feature gate must be enabled for `--authorization-config` to be specified.
|
What type of PR is this?
/kind feature
/area apiserver
What this PR does / why we need it:
This is follow-up on #119099 and implements the following:
--authorization-config
) for authorization configuration fileStructuredAuthorizationConfiguration
) for gating changesWhich issue(s) this PR fixes:
Fixes #118872
Special notes for your reviewer:
None
Does this PR introduce a user-facing change?
Additional documentation e.g., KEPs (Kubernetes Enhancement Proposals), usage docs, etc.: