Skip to content

Why does capsule-proxy need to use impersonation? #770

Description

@zhangfane

I’m trying to understand the design choice behind the use of impersonation in capsule-proxy.

From what I see, impersonation is used for all requests, including namespace-scoped resources like Pods, Deployments, etc. However, wouldn’t it be possible to just forward those requests directly to the Kubernetes API server, using the tenant user’s credentials or identity, and only apply impersonation or special handling for cluster-scoped resources?

In other words, why not treat namespace-scoped and cluster-scoped resources differently in the proxy layer, instead of applying impersonation universally?

It seems like direct passthrough (without impersonation) for namespace resources would work fine and reduce complexity.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions