What's the priority of admission webhook and controller manager in k8s？

3/14/2019

If I has an admission webhook that denies all deleting requests of secrets. So when i delete a project, what happen to the secrets in that namespace, will they be deleted anyway?

-- 白栋天

kubernetes

openshift

Similar Questions

Error in running DPDK L2FWD application on a container managed by Kubernetes

How to remove a kubernetes node from storageos?

How to disable , weavescope shell/bash prompt for running containers

Why elastic-search container memory usage keeps increasing with little use?

NodeJS with Scaffold: How to set up dev environment?

Deployment matchLabels and template labels and the DRY principle

1 Answer

3/14/2019

This figure shows where admission controller works.

Note that:

By default, the only way to delete k8s resources (ex: secret) is to access k8s api.
Admission controller applies to each api call that passes A/A check.

So, secrets will not be deleted.

-- ccshih

Source: StackOverflow