This is a cache of https://docs.openshift.com/container-platform/4.4/rest_api/security_apis/security-apis-index.html. It is a snapshot of the page at 2024-11-26T02:01:40.913+0000.
About Security APIs - Security APIs | API reference | OpenShift Container Platform 4.4
×

CertificateSigningRequest [certificates.k8s.io/v1beta1]

Description

Describes a certificate signing request

Type

object

CredentialsRequest [cloudcredential.openshift.io/v1]

Description
Type

object

PodSecurityPolicyReview [security.openshift.io/v1]

Description

PodSecurityPolicyReview checks which service accounts (not users, since that would be cluster-wide) can create the `PodTemplateSpec` in question.

Type

object

PodSecurityPolicySelfSubjectReview [security.openshift.io/v1]

Description

PodSecurityPolicySelfSubjectReview checks whether this user/SA tuple can create the PodTemplateSpec

Type

object

PodSecurityPolicySubjectReview [security.openshift.io/v1]

Description

PodSecurityPolicySubjectReview checks whether a particular user/SA tuple can create the PodTemplateSpec.

Type

object

RangeAllocation [security.openshift.io/v1]

Description

RangeAllocation is used so we can easily expose a RangeAllocation typed for security group

Type

object

secret [core/v1]

Description

secret holds secret data of a certain type. The total bytes of the values in the Data field must be less than MaxsecretSize bytes.

Type

object

SecurityContextConstraints [security.openshift.io/v1]

Description

SecurityContextConstraints governs the ability to make requests that affect the SecurityContext that will be applied to a container. For historical reasons SCC was exposed under the core Kubernetes API group. That exposure is deprecated and will be removed in a future release - users should instead use the security.openshift.io group to manage SecurityContextConstraints.

Type

object

ServiceAccount [core/v1]

Description

ServiceAccount binds together: * a name, understood by users, and perhaps by peripheral systems, for an identity * a principal that can be authenticated and authorized * a set of secrets

Type

object