Kubernetes Admission Controller
GPTKB entity
Statements (34)
Predicate | Object |
---|---|
gptkbp:instanceOf |
Kubernetes API
|
gptkbp:canBe |
true
|
gptkbp:canBeDisabled |
true
|
gptkbp:canDenyRequests |
true
|
gptkbp:canMutateRequests |
true
|
gptkbp:customs |
true
|
gptkbp:documentation |
https://kubernetes.io/docs/reference/access-authn-authz/admission-controllers/
|
gptkbp:example |
gptkb:ResourceQuota
gptkb:ServiceAccount DefaultStorageClass LimitRanger MutatingAdmissionWebhook NamespaceLifecycle NodeRestriction PodSecurityPolicy ValidatingAdmissionWebhook |
gptkbp:hasFeature |
true
|
https://www.w3.org/2000/01/rdf-schema#label |
Kubernetes Admission Controller
|
gptkbp:introducedIn |
gptkb:Kubernetes_1.0
|
gptkbp:partOf |
gptkb:Kubernetes_API_server
|
gptkbp:purpose |
enforce policies on objects
intercept API requests before persistence |
gptkbp:runsAfter |
gptkb:government_agency
authentication |
gptkbp:runsBefore |
object persistence
|
gptkbp:type |
MutatingAdmissionWebhook
ValidatingAdmissionWebhook built-in admission controllers |
gptkbp:usedFor |
resource management
policy enforcement security enforcement |
gptkbp:bfsParent |
gptkb:KubeArmor
gptkb:Kubewarden |
gptkbp:bfsLayer |
7
|