SubjectAccessReviewSpec is a description of the access request. Exactly one of ResourceAuthorizationAttributes and NonResourceAuthorizationAttributes must be set

OpenAPI Definition: io.k8s.api.authorization.v1.SubjectAccessReviewSpec

Properties

• extra :: Map

  • Extra corresponds to the user.Info.GetExtra() method from the authenticator. Since that is input to the authorizer it needs a reflection here.

• groups :: [ String ]

  • Groups is the groups you’re testing for.

• non_resource_attributes :: Kazan.Apis.Authorization.V1.NonResourceAttributes

  • Deprecated. Please use io.k8s.api.authorization.v1.NonResourceAttributes instead.

• resource_attributes :: Kazan.Apis.Authorization.V1.ResourceAttributes

  • Deprecated. Please use io.k8s.api.authorization.v1.ResourceAttributes instead.

• uid :: String

  • UID information about the requesting user.

• user :: String

  • User is the user you’re testing for. If you specify “User” but not “Groups”, then is it interpreted as “What if User were not a member of any groups