If you are looking for a simple and intuitive way of managing your users within a Kubernetes cluster, this is the right place.
With Permission Manager, you can create users, assign namespaces/permissions, and distribute Kubeconfig YAML files via a nice&easy web UI.
Creating a user
Creating a user – Summary
- User’s Kubeconfig*
To deploy and run the Permission Manager on your cluster, follow the installation guide
We love contributions from the community.
How it works
The application allows us to define and select permission standard templates (those defining who can do what, within a namespace or globally) and associate them with all the users you might want to create.
The template system is an abstraction over Cluster-Roles, RoleBinding, and ClusterRolesBindigs.
Do we plan to use CRDs and custom labels? Sure, it’s in the product roadmap.
What is a template
A template is a ClusterRole with a prefix
Why a template is not a CRD
When we started the development of this project, a template was one-to-one to a
clusterrole, the usage of a CRD looked overkill. This will obviously change in future to avoid polluting
clusterroles and will allow us to have a more precise encapsulation of what is owned by the permission manager.
How to add a new template
Create a clusterrole starting with
template-namespaced-resources___ and apply it.
operation default templates can be created by applying the manifest located at k8s/k8s-seeds/seed.yml
kubectl apply -f k8s/k8s-seeds
What is a user
A user is a custom resource of kind
Commercial & Enterprise Support
Are you using Permission Manager in your clusters and looking for commercial support? Let us know and get in touch