rbac-manager
rback
rbac-manager | rback | |
---|---|---|
4 | 1 | |
1,408 | 393 | |
0.7% | 1.3% | |
5.5 | 0.0 | |
9 days ago | over 3 years ago | |
Go | Go | |
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
rbac-manager
- rbac with denies
-
Multi-Tenant Kubernetes Clusters: Challenges and Useful Tooling
While RBAC is not particularly the toughest aspect of multi-tenancy, there are tools to help you with it. RBAC Manager was developed by Fairwinds to make security just a bit easier.
- RBAC and limited namespace access
-
RBAC for dynamic namespaces?
We have a use case similar to this and we use rbac-manager. If you can have something externally provision the namespaces with labels, I think it might work for you. If not, maybe some combination with OPA Gatekeeper could do the trick?
rback
-
Visualising RBAC on Kubernetes
I've been using rback
What are some alternatives?
rbac-lookup - Easily find roles and cluster roles attached to any user, service account, or group name in your Kubernetes cluster
lens-resource-map-extension - Lens - The Kubernetes IDE extension that displays Kubernetes resources and their relations as a force graph.
cert-manager - Automatically provision and manage TLS certificates in Kubernetes
kubesurveyor - Good enough Kubernetes namespace visualization tool
audit2rbac - Autogenerate RBAC policies based on Kubernetes audit logs
krane - Kubernetes RBAC static analysis & visualisation tool
hierarchical-namespaces - Home of the Hierarchical Namespace Controller (HNC). Adds hierarchical policies and delegated creation to Kubernetes namespaces for improved in-cluster multitenancy.
go-callvis - Visualize call graph of a Go program using Graphviz
pluto - A cli tool to help discover deprecated apiVersions in Kubernetes
Gravitational Teleport - The easiest, and most secure way to access and protect all of your infrastructure.
spicedb - Open Source, Google Zanzibar-inspired permissions database to enable fine-grained access control for customer applications