Cluster Role

The cluster role defines the permissions to the resources under the cluster.

The cluster role defines the permissions for cluster-wide resources. By binding to a service account, you can control the operational privileges of the service account.

Please see the Official Kubernetes Documentation - RBAC for details on cluster roles.

Entry: In the cloud management platform, click the top left corner of navigation menu, and click “Containers/Clusters/Cluster Role” menu item in the left menu bar that pops up to enter the Cluster Roles page.

View cluster roles

This function is used to filter cluster role information based on cluster, namespace.

  1. In the cluster roles page, by default, cluster role information for all namespaces under a cluster is viewed.

  2. When there are multiple clusters in the environment, click the input box to the right of the cluster at the top of the list and select other clusters to view the cluster role information of all namespaces under other clusters.

Create cluster role

This function is used to create cluster roles and authorize cluster roles.

  1. On the Cluster Roles page, click the “Create” button at the top of the list to enter the Create Cluster Role page.
  2. Configure the following parameters.
    • Name: Set the name of the cluster role.
    • Cluster: Select the cluster to which the cluster role belongs.
    • Resource Authorization: Click the “Add Resource” button to select the resource and set the permissions to the resource.
  3. Click the “Create” button to complete the operation.

Delete Cluster Roles

This function is used to delete a cluster role.

Delete

  1. On the Cluster Roles page, click the “Delete” button in the action column to the right of the cluster role, and the action confirmation dialog box pops up.
  2. Click the “OK” button to delete the cluster role and related resources.

Batch delete

  1. Select one or more cluster roles in the cluster roles list, and click the “Delete” button at the top of the list, the action confirmation dialog box pops up.
  2. Click the “OK” button to delete the cluster role and the related resources.

View/Edit

This function is used to view or edit the yaml file of the cluster role.

  1. On the cluster role page, click the “View/Edit” button on the right action bar of the cluster role to bring up the View/Update dialog box.
  2. Support viewing and editing the yaml file information of the cluster role.
  3. After editing the yaml file, click the “OK” button to take effect.

View cluster role details

This function is used to view information about the cluster role.

  1. On the Cluster Roles page, click the Cluster Role Name item to enter the Cluster Role Details page.
  2. View the following information: Cloud ID, ID, name, status, domain, project, cluster, namespace, created at, updated at, notes, etc.

View Rules

This function is used to view the rules matched by the cluster role and supports deleting rules.

  1. On the Cluster Roles page, click the cluster role name item to enter the cluster role details page.
  2. Click the Rules tab to enter the Rules page.
  3. View the information of the rules matched by the cluster role.
  4. Click the “Delete” button in the action column on the right side of the cluster role to bring up the action confirmation dialog box.
  5. Click the “OK” button to complete the operation.

View Source Information

This function is used to view and edit the yaml information of the cluster role.

  1. On the Cluster Roles page, click the cluster role name item to enter the cluster role details page.
  2. Click the “Source Information” tab to enter the source information page.
  3. Click the “Copy Content” button to copy the yaml file information of the node.
  4. After updating the yaml file, click the “Update” button.

View Operation Log

This function is used to view the operation logs related to the cluster role.

  1. On the Cluster Roles page, click the cluster role name item to enter the cluster role details page.
  2. Click the Operation Log tab to enter the Operation Log page.
    • Load More Logs: In the Operation Logs page, the list displays 20 operation logs by default. To view more operation logs, click the “Load More” button to get more logs.
    • View Log Details: Click the “View” button on the right column of the operation log to view the log details. Copy details are supported.
    • View logs of specified time period: If you want to view the operation logs of a certain time period, set the specific date in the start date and end date at the top right of the list to query the log information of the specified time period.
    • Export logs: Currently, only the logs displayed on this page are supported to be exported. Click the upper-right corner of icon, set the export data column in the pop-up export data dialog, and click the “OK” button to export the logs.