K8s for Data Engineers — RBAC

Controlling access to resources in K8s

Part I | Part II | Part III | Part IV | Part V | Part VI | Part VII | Part VIII | Part IX

When K8s receives a new request K8s API server performs the following steps:

1. Authenticate the user, if validation fails return 401 unauthorised
2. Authorise the request, if it fails return 403 Forbidden

In K8s, authorisation process is commonly performed with Role-Based Access Control (RBAC). RBAC is a security feature that restricts access to Kubernetes…