Open linzhengen opened 3 years ago
https://aws.amazon.com/jp/blogs/containers/introducing-oidc-identity-provider-authentication-amazon-eks/
kind: ClusterRoleBinding apiVersion: rbac.authorization.k8s.io/v1 metadata: name: read-secrets-role-binding namespace: default subjects: - kind: Group # Cognitoのグループ名を指定 name: "gid:secret-reader" apiGroup: rbac.authorization.k8s.io roleRef: kind: ClusterRole name: read-secrets apiGroup: rbac.authorization.k8s.io
https://github.com/weaveworks/eksctl/blob/main/examples/27-oidc-provider.yaml
Doc
https://aws.amazon.com/jp/blogs/containers/introducing-oidc-identity-provider-authentication-amazon-eks/
ClusterRoleBindingのやり方
eksctl yamlでも定義できる
https://github.com/weaveworks/eksctl/blob/main/examples/27-oidc-provider.yaml