• Kubernetes Submit Queue's avatar
    Merge pull request #33378 from deads2k/rbac-10-allow-token · 6c5a1871
    Kubernetes Submit Queue authored
    Automatic merge from submit-queue
    
    add anytoken authenticator
    
    Adds `--insecure-allow-any-token` as a flag to the API server to create an authenticator that will accept any bearer token and transform it into a user by parsing it out as `username/group1,group2,...`.
    
    This gives an easy way to identify as a user and check permissions:
    ```bash
    ALLOW_ANY_TOKEN=true hack/local-up-cluster.sh 
    kubectl config set-cluster local-kube --server=https://localhost:6443 --insecure-skip-tls-verify=true
    kubectl config set-credentials david --token=david/group1
    kubectl config set-context local --cluster=local-kube --user=david
    kubectl config use-context local
    ```
    
    @kubernetes/sig-auth
    6c5a1871
Name
Last commit
Last update
..
.gitattributes Loading commit data...
exceptions.txt Loading commit data...
excluded-flags.txt Loading commit data...
known-flags.txt Loading commit data...