K
Q

Official nomenclature for human roles in a Kubernetes-based shop?

2/13/2019

Is there something like the old J2EE Platform Roles but for Kubernetes? It doesn't have to map 1:1 to these old roles of course, but I would like to have a reference to answer questions like, "The person who runs helm install and is responsible for knowing what all the options do is called _________?" Or, "The person who designs the autoscaling policy is called _______?" Or even, "The person who is responsible that all of the docker images used in the enterprise have been patched with the latest CVE vulnerability fixes is called ________?" Is there a standard nomenclature for this sort of thing? Where is it?

Thanks,

Ed

J2EE Platform Roles

-- edburns
architecture
kubernetes
kubernetes-helm

Similar Questions

Kubernetes - How to set DNS Policy at Cluster Level
Kubernetes ingress same path multiple ports
How to access PersistentVolume files on docker-for-desktop?
Relation between preStop hook and terminationGracePeriodSeconds
Install list of charts in parallel with ok status
Can't connect to Pod in DevSpace following Django tutorial
Kubernetes Vulnerability Scanner

1 Answer

2/13/2019

The closest to this is Kubernetes RBAC. You can create roles and bind the roles to groups/users/service accounts. You will have to do so heavy lifting in terms of defining the specific roles that suit your organizations and what types of permissions.

If you are looking for an audit trail, you can look at Auditing.

Hope it helps!

-- Rico
Source: StackOverflow