Back To Schedule
Thursday, May 23 • 14:00 - 14:35
Deep Dive: Auth SIG - Mo Khan & Matt Rogers, Red Hat

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
We present a thorough walkthrough of the Kubernetes authentication and authorization codebase, where we will cover interface contracts and give specific examples of how they are implemented in Kubernetes.  The audience will also be given a high level overview of the request processing pipeline.  The generic nature of these interfaces will be explored along with a look into areas where Kubernetes has a strong opinion on the implementation specifics such as service accounts and the node authorizer.  As a case study, the OpenShift auth stack will be discussed.  OpenShift’s use of OAuth for authentication and role based access control for authorization will lead into discussions around token delegation, auditing, access controlled resource lists, etc.

avatar for Mo Khan

Mo Khan

Software Engineer, Microsoft
Mo Khan is a software engineer who is passionate about open source and security. He started working on Kubernetes in 2016, and currently serves as a chair and subproject owner for Kubernetes SIG Auth, a member of the Kubernetes Security Response Committee and a contributor to SIG... Read More →

Matt Rogers

Senior Software Engineer, Red Hat

Thursday May 23, 2019 14:00 - 14:35 CEST