38 lines
853 B
YAML
38 lines
853 B
YAML
apiVersion: v1
|
|
kind: ServiceAccount
|
|
metadata:
|
|
name: kubepi-admin
|
|
namespace: wms-system
|
|
labels:
|
|
app: kubepi
|
|
---
|
|
apiVersion: v1
|
|
kind: Secret
|
|
metadata:
|
|
name: kubepi-admin-token
|
|
namespace: wms-system
|
|
annotations:
|
|
kubernetes.io/service-account.name: kubepi-admin
|
|
type: kubernetes.io/service-account-token
|
|
---
|
|
apiVersion: rbac.authorization.k8s.io/v1
|
|
kind: ClusterRoleBinding
|
|
metadata:
|
|
name: kubepi-admin-binding
|
|
labels:
|
|
app: kubepi
|
|
roleRef:
|
|
apiGroup: rbac.authorization.k8s.io
|
|
kind: ClusterRole
|
|
name: cluster-admin
|
|
subjects:
|
|
- kind: ServiceAccount
|
|
name: kubepi-admin
|
|
namespace: wms-system
|
|
---
|
|
# 应用配置后,执行以下命令获取长期有效的 Bearer Token:
|
|
# kubectl -n wms-system get secret kubepi-admin-token -o jsonpath='{.data.token}' | base64 -d
|
|
#
|
|
# 获取 API Server 地址:
|
|
# kubectl cluster-info
|