Description

SubjectAccessReview is an object for requesting information about whether a user or group can perform an action

Object Schema

Expand or mouse-over a field for more information about it.

apiVersion:
content:
Raw:
groups:
- [string]:
isNonResourceURL:
kind:
namespace:
path:
resource:
resourceAPIGroup:
resourceAPIVersion:
resourceName:
scopes:
- [string]:
user:
verb:

Operations

Create a SubjectAccessReview

Create a SubjectAccessReview

HTTP request

POST /oapi/v1/subjectaccessreviews HTTP/1.1
Authorization: Bearer $TOKEN
Accept: application/json
Connection: close
Content-Type: application/json'

{
  "kind": "SubjectAccessReview",
  "apiVersion": "v1",
  ...
}

Curl request

$ curl -k \
    -X POST \
    -d @- \
    -H "Authorization: Bearer $TOKEN" \
    -H 'Accept: application/json' \
    -H 'Content-Type: application/json' \
    https://$ENDPOINT/oapi/v1/subjectaccessreviews <<'EOF'
{
  "kind": "SubjectAccessReview",
  "apiVersion": "v1",
  ...
}
EOF

HTTP body

Parameter Schema

body

v1.SubjectAccessReview

Query parameters

Parameter Description

pretty

If 'true', then the output is pretty printed.

Responses

HTTP Code Schema

200 OK

v1.SubjectAccessReview

401 Unauthorized

Consumes

  • */*

Produces

  • application/json

  • application/yaml

  • application/vnd.kubernetes.protobuf

Create a SubjectAccessReview in a namespace

Create a SubjectAccessReview

HTTP request

POST /oapi/v1/namespaces/$NAMESPACE/subjectaccessreviews HTTP/1.1
Authorization: Bearer $TOKEN
Accept: application/json
Connection: close
Content-Type: application/json'

{
  "kind": "SubjectAccessReview",
  "apiVersion": "v1",
  ...
}

Curl request

$ curl -k \
    -X POST \
    -d @- \
    -H "Authorization: Bearer $TOKEN" \
    -H 'Accept: application/json' \
    -H 'Content-Type: application/json' \
    https://$ENDPOINT/oapi/v1/namespaces/$NAMESPACE/subjectaccessreviews <<'EOF'
{
  "kind": "SubjectAccessReview",
  "apiVersion": "v1",
  ...
}
EOF

HTTP body

Parameter Schema

body

v1.SubjectAccessReview

Path parameters

Parameter Description

namespace

object name and auth scope, such as for teams and projects

Query parameters

Parameter Description

pretty

If 'true', then the output is pretty printed.

Responses

HTTP Code Schema

200 OK

v1.SubjectAccessReview

401 Unauthorized

Consumes

  • */*

Produces

  • application/json

  • application/yaml

  • application/vnd.kubernetes.protobuf