Perform actions in the context of another ServiceAccount
Useful for one cluster used by many teams
Read-only user per namespace
Impersonation to admin per namespace
Useful for cluster-wide administrator
Cluster-wide read-only user
Impersonation to admin per namespace
Demonstrates delegation of a namespace
Namespace test
Read-only user test-reader
Admin user test-admin
Usage:
bash [3]
kubectl \
--namespace test \
--as=test-admin \
run -it --image=alpine --command \
-- \
sh