KUBERNETES LEAST PRIVILEGE IMPLEMENTATION USING THE GOOGLE CLOUD AS AN EXAMPLE

This page summarizes the projects mentioned and recommended in the original post on dev.to
Kubernetes Kubectl kubectl-plugins Sudo security-privileges

WorkOS
Our great sponsors
  • WorkOS - The modern identity platform for B2B SaaS
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • SaaSHub - Software Alternatives and Reviews
Our great sponsors

  • kubectl-sudo

    Run kubernetes commands with the security privileges of another user

    • With the kubectl-sudo plugin, kubectl commands that require more extensive rights can be executed explicitly as a member of the admin group. This reduces the chance of accidentally modifying or deleting resources on the cluster, for example when running scripts or being in the wrong namespace.

  • helm-sudo

    A Helm plugin for running commands with the security privileges of another user

    • In the Kubernetes environment, Helm charts are very important. So, to be able to use the functionality for Helm as well, we have developed a corresponding plugin that can be used analogously to kubectl-sudo. Analogous to the usage of the kubectl-sudo plugin, here is an example for the helm plugin helm sudo list.

  • WorkOS

    The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

    WorkOS logo

  • sudo-kubeconfig

    Create a sudo kubeconfig for your current kubernetes context

    • To create a sudo context this script is available: wget -P /tmp/ "https://raw.githubusercontent.com/cloudogu/sudo-kubeconfig/0.1.0/create-sudo-kubeconfig.sh" With it, only these steps are necessary to interactively create a kubeconfig for the currently selected context:

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts