There's only some design docs here http://kubernetes.io/v1.0/docs/design/README.html
can someone describe the details of kubernetes security workflow?
Kubernetes does not have a complete authentication and authorization solution yet. We are working on it. If you can tell me more about your environment, I may be able to make tactical suggestions. For example, are you on-prem or GKE? do you have existing internal web apps (not yet on kubernetes) and how to your internal users auth to those web apps?