![]() | name| string | Resource name in the Kubernetes cluster. Kubernetes resources represents the resources the role allows/denies access to. Rules are a high level construct used for access controlĪctions specifies optional actions taken when this rule matches List of users this role is allowed to impersonate List of roles this role is allowed to impersonate Specifies whether users are allowed to issue certificates for other users or groups List of Kubernetes Resources the Role applies to List of database users this role is allowed to connect as List of database names this role is allowed to connect to They are identical and contain the following fields: Role specification consists of two sections: allow and deny. Version is an optional string that specifies the role version (default v6). Resource namespace ("default" by default) Metadata specifies a resource name, description, labels and optional expiry date and time. The role resource specifies a set of permissions assigned to local and SSO users. If more than one are provided, they will be tried in the order above until one succeeds. The retry_* values are used to retry the API calls to Teleport when the cache is stale. profile_name and profile_dir (both can be empty) and Teleport will try to connect using current profile from ~/.tsh.identity_file_path or identity_file_base64 and addr to connect using an identity file.cert_base64, key_base64, root_ca_base64 and addr to connect using a base64-encoded key.cert_path, key_path, root_ca_path and addr to connect using key files. ![]() Teleport auth or proxy address in "host:port" format. The provider supports the following options: Name Version = ">= 12.1.0" source = "/gravitational/teleport"
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |