Access Control in Kubernetes: Using SelfSubjectAccessReview and LocalSubjectAccessReview
SelfSubjectAccessReview (SSAR) and LocalSubjectAccessReview (LSAR) are Kubernetes API resources that allow you to programmatically verify whether a given user or service account is authorized to perform a specific action. These can be invaluable when building custom RBAC UIs, dashboards, or admission controllers that need to display or enforce fine-grained permission checks.
Keep reading with a 7-day free trial
Subscribe to Pods & Pixels to keep reading this post and get 7 days of free access to the full post archives.