一、AWS IAM Authenticator
参考文档:
https://github.com/kubernetes-sigs/aws-iam-authenticator
https://kubernetes.io/docs/reference/access-authn-authz/authentication/#webhook-token-authentication
二、IRSA(IAM Role Service Account)
参考文档:
https://docs.aws.amazon.com/zh_cn/eks/latest/userguide/iam-roles-for-service-accounts.html
https://aws.amazon.com/blogs/opensource/introducing-fine-grained-iam-roles-service-accounts/
https://github.com/aws/amazon-eks-pod-identity-webhook
https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/#service-account-token-volume-projection
https://docs.aws.amazon.com/zh_cn/cli/latest/userguide/cli-configure-role.html
欢迎大家扫码关注,获取更多信息
