Show [Cluster]RoleBinding in rbac-tool lookup #96

cr7258 · 2024-01-05T01:41:01Z

Why

When I'm looking up the permissions (Role/ClusterRole) a user has, I might want to know how those permissions are bound in order to facilitate adjustments to the permissions.

What

Add a new column Binding to display RoleBinding or ClusterRoleBinding.

Before

rbac-tool lookup kube-controller-manager

  SUBJECT                        | SUBJECT TYPE   | SCOPE       | NAMESPACE   | ROLE
+--------------------------------+----------------+-------------+-------------+------------------------------------------------+
  kube-controller-manager        | ServiceAccount | Role        | kube-system | system::leader-locking-kube-controller-manager
  system:kube-controller-manager | User           | ClusterRole |             | system:kube-controller-manager
  system:kube-controller-manager | User           | Role        | kube-system | extension-apiserver-authentication-reader
  system:kube-controller-manager | User           | Role        | kube-system | system::leader-locking-kube-controller-manager

Now

rbac-tool lookup kube-controller-manager

  SUBJECT                        | SUBJECT TYPE   | SCOPE       | NAMESPACE   | ROLE                                           | BINDING
+--------------------------------+----------------+-------------+-------------+------------------------------------------------+---------------------------------------------------+
  kube-controller-manager        | ServiceAccount | Role        | kube-system | system::leader-locking-kube-controller-manager | system::leader-locking-kube-controller-manager
  system:kube-controller-manager | User           | ClusterRole |             | system:kube-controller-manager                 | system:kube-controller-manager
  system:kube-controller-manager | User           | Role        | kube-system | extension-apiserver-authentication-reader      | system::extension-apiserver-authentication-reader
  system:kube-controller-manager | User           | Role        | kube-system | system::leader-locking-kube-controller-manager | system::leader-locking-kube-controller-manager

gadinaor-r7

LGTM

cr7258 added 2 commits January 5, 2024 09:26

Show [Cluster]RoleBinding in rbac-tool lookup

5d22fc9

update document

74793c0

gadinaor requested a review from gadinaor-r7 January 7, 2024 11:08

gadinaor added the enhancement New feature or request label Jan 7, 2024

gadinaor-r7 approved these changes Jan 8, 2024

View reviewed changes

gadinaor-r7 merged commit fb6b567 into alcideio:master Jan 8, 2024
3 checks passed

gadinaor-r7 mentioned this pull request Jan 8, 2024

Issue #73 Show [Cluster]RoleBinding in rbac-tool lookup #84

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Show [Cluster]RoleBinding in rbac-tool lookup #96

Show [Cluster]RoleBinding in rbac-tool lookup #96

cr7258 commented Jan 5, 2024 •

edited

Loading

gadinaor-r7 left a comment

Show [Cluster]RoleBinding in rbac-tool lookup #96

Show [Cluster]RoleBinding in rbac-tool lookup #96

Conversation

cr7258 commented Jan 5, 2024 • edited Loading

Why

What

gadinaor-r7 left a comment

Choose a reason for hiding this comment

cr7258 commented Jan 5, 2024 •

edited

Loading