Link

Users and Groups pages in User Management section

Dedicated pages for Users and Groups are now available under a consolidated User Management navigation section along with the existing Service Accounts, Roles, and Role Bindings. These new pages allow an admin to view and modify the existing users and groups in the system and also allow impersonation of a user or group.

Users Page

Users list

Impersonation

  • The console now includes a list of users who have previously logged into the cluster, a place where admins can come to see which users have authenticated to the system using which Identity Provider.
  • Admins can now impersonate users from this list to see the console exactly how a user with those permissions would, making it easy to test and troubleshoot RBAC settings. Previously this feature was available for the impersonation of role bindings to test a single role, however now being able to impersonate a user and exercise all of their roles at one time will ease more complex access-related tasks.

User Details Overview

  • Details about an individual user can also be viewed, giving an admin a quick understanding of that user with the ability to view and edit the comprising YAML.

User Details Role Bindings

  • The Role Bindings tab for a user gives a summarized look at what roles that user has access to, with the ability to add additional role bindings right from that list.

Groups Page

Groups list

  • The console also now includes a dedicated view of the groups on the cluster. Admins can see what groups exist and how many users are contained in each.

Groups Details Overview

  • Viewing the details of a group gives an overview, including a list of its current members with the option to view the details of a particular user.

Groups Details Role Bindings

  • Role bindings for the group are also viewable, letting an admin know what roles users in that group are inheriting, with the option to add more.