Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

document necessary iam permissions #223

Closed
clofresh opened this issue Jul 28, 2016 · 3 comments
Closed

document necessary iam permissions #223

clofresh opened this issue Jul 28, 2016 · 3 comments
Labels
area/documentation
Milestone
1.5.1

Comments

@clofresh
Copy link

It would be nice to know which particular iam permissions the commands will need before running. Maybe even have a command that could export a minimal policy you can use.
@ProTip
Copy link

ProTip commented Jul 29, 2016
edited
Loading

Further, kops creates IAM policies. It would be great if these roles could be provided into kops while allowing it to pass the role on to the servers.

It is extremely difficult(impossible?) to allow something access to IAM without creating loopholes that would allow it to acquire full access. #226 may largely mitigate this risk in regards to keys going missing.

@justinsb justinsb added this to the 1.3.1 milestone Aug 15, 2016
@chrislovecnm
Copy link
Contributor

Hey all PRs are welcome!!!! Please let us know if you are able to help out documenting this awesome tool!!!

@egeland egeland mentioned this issue Dec 15, 2016
Closed
@justinsb justinsb modified the milestones: 1.5.0, 1.5 Dec 28, 2016
@ahawkins ahawkins mentioned this issue Feb 1, 2017
Closed
@scottmwebber scottmwebber mentioned this issue Feb 8, 2017
Closed
@yissachar
Copy link
Contributor

We have some docs on this now. Further discussion on minimizing the permissions is taking place in #1100.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
area/documentation
Projects
None yet
Milestone
1.5.1
Development

No branches or pull requests
5 participants
@clofresh @justinsb @ProTip @chrislovecnm @yissachar