269db6b7c2
This change updates the impersonator to always authorize every request instead of relying on the Kuberentes API server to perform the check on the impersonated request. This protects us from scenarios where we fail to correctly impersonate the user due to some bug in our proxy logic. We still rely completely on the API server to perform admission checks on the impersonated requests. Signed-off-by: Monis Khan <mok@vmware.com> |
||
---|---|---|
.. | ||
cluster_capabilities | ||
deploy/tools | ||
integration | ||
library |