Kubeconfig

Fornisce autorizzazioni ad un utente.

apiVersion: v1
clusters:
- cluster:
    certificate-authority-data: 
    KEY===================================
    server: https://url:6443
  name: cluster-test
contexts:
- context:
    cluster: cluster-test
    user: oidc-user
  name: test
current-context: test
kind: Config
preferences: {}
users:
- name: oidc-user
  user:
    exec:
      apiVersion: client.authentication.k8s.io/v1beta1
      args:
      - get-token
      - --oidc-issuer-url=https://url.eu
      - --oidc-client-id=kubernetes
      - --oidc-client-secret=kubernetes-client-secret
      - --oidc-extra-scope=email
      - --oidc-extra-scope=profile
      - --token-cache-dir=/home/user/.kube/cache/oidc-user
      command: kubectl-oidc_login
      env: null
      interactiveMode: IfAvailable
      provideClusterInfo: false
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
  name: oidc-global-reader
subjects:
- kind: User
  name: viewer@mogavero.eu
  apiGroup: rbac.authorization.k8s.io
roleRef:
  kind: ClusterRole
  name: view
  apiGroup: rbac.authorization.k8s.io
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
  name: oidc-cluster-admin
subjects:
- kind: User
  name: fabio@mogavero.eu
  apiGroup: rbac.authorization.k8s.io
roleRef:
  kind: ClusterRole
  name: cluster-admin
  apiGroup: rbac.authorization.k8s.io