Kubernetes knob to control mounting of k8s service account to a POD

Deepak Kumar Deepak Kumar

Deepak Kumar

Propelling AI To Reinvent The Future ||Author|| 150+ Mentorship|| Leader || Innovator || Machine learning Specialist || Distributed architecture | IoT | Cloud Computing

发布日期: 2021年4月15日
+ 关注
Why to read this?

If your need is to provide permissions for a Kubernetes POD, you must have explored service account feature, In this case, you may see that there is a file mount in POD which provides corresponding JWT token. Even if you don't use service account, you will see such file mount. You may be wondering why so? This document helps in this direction.


Technical explanation

A ServiceAccount is used by containers running in a Pod, to communicate with the API server of the Kubernetes cluster. If the pod does not have a ServiceAccount set, it sets the ServiceAccount to default. 


Most applications don’t need to talk to the API server, so they don’t need an access token. This is especially important if you’re not using RBAC. You can do this by specifying a knob. 

Example for try

Please refer here for the example YAML. Notice the option automountServiceAccountToken


Precedence rule

This option can be provided in service account and/or POD definition. In case it is provided at both place, then POD definition configuration will be applied.

要查看或添加评论,请登录

Deepak Kumar的更多文章

  • Role of DBSCAN in machine learning
    2023年12月21日

    Role of DBSCAN in machine learning

    Why to read this? Density-based spatial clustering of applications with noise (DBSCAN)is a well-known data clustering…

  • Choice between multithreading and multi-processing: When to use what
    2023年12月20日

    Choice between multithreading and multi-processing: When to use what

    Introduction Single threaded and single process solution is normal practice. For example, if you open the text editor…

  • Artificial Narrow Intelligence
    2023年12月18日

    Artificial Narrow Intelligence

    About ANI ANI stands for "Artificial Narrow Intelligence." ANI refers to artificial intelligence systems that are…

  • Federated learning and Vehicular IoT
    2023年11月29日

    Federated learning and Vehicular IoT

    Definition Federated Learning is a machine learning paradigm that trains an algorithm across multiple decentralised…

  • An age old proven technique for image resizing
    2023年7月14日

    An age old proven technique for image resizing

    Why to read? Anytime, was you curious to know how you are able to zoom small resolution picture to bigger size?…

    1 条评论
  • Stock Market Volatility Index
    2023年7月12日

    Stock Market Volatility Index

    Why? Traders and investors use the VIX index as a tool to gauge market sentiment and assess risk levels. It can help…

  • The case for De-normalisation in Machine learning
    2023年7月8日

    The case for De-normalisation in Machine learning

    Why? The need for inverse normalization arises when you want to interpret or use the normalized data in its original…

    1 条评论
  • Kubernetes complements Meta-verse
    2023年7月4日

    Kubernetes complements Meta-verse

    Motivation The #metaverse is a virtual world or space that exists on the #internet . It's like a big interconnected…

    1 条评论
  • Which one offers better Security- OSS or Proprietary software
    2023年6月24日

    Which one offers better Security- OSS or Proprietary software

    Motivation World is using so many OSS. Apache Kafka is a core part of our infrastructure at LinkedIn Redis is core part…

  • Why chatGPT/LLM should have unlearning capability like human has..
    2023年5月29日

    Why chatGPT/LLM should have unlearning capability like human has..

    Executive Summary Do you know, chatGPT/LLM has this open problem to solve. This problem(unlearn) has potential to…

    1 条评论

社区洞察

其他会员也浏览了