Namespace Rolebinding Operator

This repository contains an example of a Kubernetes operator that listens for changes on namespaces and creates a rolebinding with cluster edit access within that namespace. This example would be useful for when using OIDC in a Kubernetes cluster.

For example: You might have a group in your AD with the name: ad-kubernetes-kube-system when the kube-system namespace is created, this operator would create the required RoleBinding so that when a user with the group ad-kubernetes-kube-system logs in via OIDC they'll have access to edit things in the kube-system namespace

Usage

--run-outside-cluster # Uses ~/.kube/config rather than in cluster configuration

Development

Build from source

make install_deps
make build
./bin/namespace-rolebinding-operator --run-outside-cluster 1

Name		Name	Last commit message	Last commit date
Latest commit History 4 Commits
cmd		cmd
pkg/controller		pkg/controller
.gitignore		.gitignore
Dockerfile		Dockerfile
LICENSE		LICENSE
Makefile		Makefile
README.md		README.md
docker-compose.yml		docker-compose.yml
glide.lock		glide.lock
glide.yaml		glide.yaml
operator.yaml		operator.yaml

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

Namespace Rolebinding Operator

Usage

Development

Build from source

About

Uh oh!

Releases

Packages

Languages

License

treacher/namespace-rolebinding-operator

Folders and files

Latest commit

History

Repository files navigation

Namespace Rolebinding Operator

Usage

Development

Build from source

About

Resources

License

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages