mirror of
https://github.com/kubernetes/kubernetes.git
synced 2026-03-12 05:35:17 -04:00
15b61bc006
Automatic merge from submit-queue (batch tested with PRs 62590, 62818, 63015, 62922, 63000). If you want to cherry-pick this change to another branch, please follow the instructions <a href="https://github.com/kubernetes/community/blob/master/contributors/devel/cherry-picks.md">here</a>. authz: nodes should not be able to delete themselves @kubernetes/sig-auth-pr-reviews ```release-note kubelets are no longer allowed to delete their own Node API object. Prior to 1.11, in rare circumstances related to cloudprovider node ID changes, kubelets would attempt to delete/recreate their Node object at startup. If a legacy kubelet encounters this situation, a cluster admin can remove the Node object: * `kubectl delete node/<nodeName>` or grant self-deletion permission explicitly: * `kubectl create clusterrole self-deleting-nodes --verb=delete --resource=nodes` * `kubectl create clusterrolebinding self-deleting-nodes --clusterrole=self-deleting-nodes --group=system:nodes` ``` |
||
|---|---|---|
| .. | ||
| bootstrappolicy | ||
| BUILD | ||
| rbac.go | ||
| rbac_test.go | ||
| subject_locator.go | ||
| subject_locator_test.go | ||