角色绑定(RoleBinding)
# RoleBinding 常用配置项
将一个角色绑定到集群用户身上。
# 1RoleBinding示例
示例 1,绑定给集群用户。
apiVersion: rbac.authorization.k8s.io/v1
kind: RoleBinding
metadata:
name: rbind1
roleRef:
kind: Role
name: pod-reader
apiGroup: rbac.authorization.k8s.io
subjects:
- kind: User
name: john
apiGroup: rbac.authorization.k8s.io
1
2
3
4
5
6
7
8
9
10
11
12
2
3
4
5
6
7
8
9
10
11
12
示例 2,绑定给某个命名空间中的服务账户。
apiVersion: rbac.authorization.k8s.io/v1
kind: RoleBinding
metadata:
name: rbind1
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: Role
name: role1
subjects:
- kind: ServiceAccount
name: web-sa
namespace: ns1
1
2
3
4
5
6
7
8
9
10
11
12
2
3
4
5
6
7
8
9
10
11
12
编辑 (opens new window)