Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Extend NodeRestriction to ServiceAccounts #4935

Open
4 tasks
vinayakankugoyal opened this issue Oct 29, 2024 · 3 comments
Open
4 tasks

Extend NodeRestriction to ServiceAccounts #4935

vinayakankugoyal opened this issue Oct 29, 2024 · 3 comments
Assignees
Labels
sig/auth Categorizes an issue or PR as relevant to SIG Auth.

Comments

@vinayakankugoyal
Copy link
Contributor

vinayakankugoyal commented Oct 29, 2024

Enhancement Description

  • One-line enhancement description (can be used as a release note): Provide a way for workloads to opt-in their service accounts to be node restricted such that the workload running with that service account can only read and update resources that are associated with the node it is running on.
  • Kubernetes Enhancement Proposal:
  • Discussion Link: https://docs.google.com/document/d/1woLGRoONE3EBVx-wTb4pvp4CI7tmLZ6lS26VTbosLKM/edit?tab=t.0#bookmark=id.u3dv6ikja75p
  • Primary contact (assignee): @vinayakankugoyal
  • Responsible SIGs: sig-auth
  • Enhancement target (which target equals to which milestone):
    • Alpha release target (x.y):
    • Beta release target (x.y):
    • Stable release target (x.y):
  • Alpha
    • KEP (k/enhancements) update PR(s):
    • Code (k/k) update PR(s):
    • Docs (k/website) update PR(s):

Please keep this description up to date. This will help the Enhancement Team to track the evolution of the enhancement efficiently.

@k8s-ci-robot k8s-ci-robot added the needs-sig Indicates an issue or PR lacks a `sig/foo` label and requires one. label Oct 29, 2024
@vinayakankugoyal
Copy link
Contributor Author

/assign @vinayakankugoyal

@vinayakankugoyal
Copy link
Contributor Author

/sig auth

@k8s-ci-robot k8s-ci-robot added sig/auth Categorizes an issue or PR as relevant to SIG Auth. and removed needs-sig Indicates an issue or PR lacks a `sig/foo` label and requires one. labels Oct 29, 2024
@sftim
Copy link
Contributor

sftim commented Oct 30, 2024

/retitle Extend NodeRestriction to ServiceAccounts

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
sig/auth Categorizes an issue or PR as relevant to SIG Auth.
Projects
Status: Needs Triage
Development

No branches or pull requests

3 participants