Hi Ramana, This is absolutely wonderful session, Now I am comfortable watching your videos with 2x speed to understand all the concepts . Understanding security concepts is more important than passing CKS exam, I am not sure I will pass on my first attempt but putting sincere effort. I understand admission controls now without any additional questions. I am looking forward your slides on GitHub! Great job !!
Hi GVR, I have one doubt... If we have to use Admission Configuration File as mentioned in 37.38.. Do we have still have to create MutatingWebhookConfiguration or ValidatingWebhookConfiguration as discussed previously or they are independent of each other ...???
both are independent. mutating & validating are belongs to admissionregistration.k8s.io/vi, AdmissionConfiguration belongs to apiserver.config.k8s.io/v1. AdmissionConfiguration is providing configuration for the webhook admission controllers for API server (e.g mutating, validating, ImagePolicyWebhook, PodNodeSelector etc) If your mutating & validating webhooks Configuration requires some authentication, then you will be specifying in kubeConfigFile. Refer this: kubernetes.io/docs/reference/access-authn-authz/extensible-admission-controllers/#authenticate-apiservers
@@learnwithgvr Thanks for replying .. So we define Mutating and Validating Webhook from 1st and if we want API server to be authentiated to webhook we use AdmissionConfiguration... 1st is always required??
Hi Ramana,
This is absolutely wonderful session, Now I am comfortable watching your videos with 2x speed to understand all the concepts . Understanding security concepts is more important than passing CKS exam, I am not sure I will pass on my first attempt but putting sincere effort. I understand admission controls now without any additional questions. I am looking forward your slides on GitHub!
Great job !!
Glad it was helpful!
Nice video Sir.. Thank you very much ...
Most welcome. Keep Learning
Good Session
Thank you
Hi GVR, I have one doubt... If we have to use Admission Configuration File as mentioned in 37.38.. Do we have still have to create MutatingWebhookConfiguration or ValidatingWebhookConfiguration as discussed previously or they are independent of each other ...???
both are independent. mutating & validating are belongs to admissionregistration.k8s.io/vi, AdmissionConfiguration belongs to apiserver.config.k8s.io/v1.
AdmissionConfiguration is providing configuration for the webhook admission controllers for API server (e.g mutating, validating, ImagePolicyWebhook, PodNodeSelector etc)
If your mutating & validating webhooks Configuration requires some authentication, then you will be specifying in kubeConfigFile.
Refer this: kubernetes.io/docs/reference/access-authn-authz/extensible-admission-controllers/#authenticate-apiservers
@@learnwithgvr Thanks for replying .. So we define Mutating and Validating Webhook from 1st and if we want API server to be authentiated to webhook we use AdmissionConfiguration... 1st is always required??
@@VinaySingh-gw3yi Yes Correct
@@learnwithgvr Thank you that clears the doubt..Your videos are really amazing