< img height="1" width="1" style="display:none;" alt="" src="https://px.ads.linkedin.com/collect/?pid=3131724&fmt=gif" />

View Cluster Role Details

This section explains how to view cluster role details.

Prerequisites

You should join a cluster and have the Role Viewing permission within the cluster. For more information, refer to "Cluster Members" and "Cluster Roles".

Steps

  1. Log in to the KubeSphere web console with a user who has the Role Viewing permission, and access your cluster.

  2. Click Cluster Settings > Cluster Roles in the left navigation pane.

  3. Click the name of a cluster role in the list to open its details page.

  4. On the Permissions tab on the right side of the details page, you can view the permissions associated with the cluster role.

    All cluster members can view basic information about the cluster. The permissions required for other operations are as follows:

    • Storage

      Permission Operations Allowed

      Persistent Volume Claim Viewing

      View persistent volume claim list, view persistent volume claim details, view persistent volume list, view persistent volume details.

      Persistent Volume Claim Management

      Create persistent volume claim, clone persistent volume, expand persistent volume, edit persistent volume claim information, edit persistent volume information, delete persistent volume claim, delete persistent volume.

      Storage Class Viewing

      View storage class list, view storage class details.

      Storage Class Management

      Create storage class, set default storage class, enable and disable volume operations, edit storage class information, delete storage class.

    • Access Control

      Parameter Description

      Role Viewing

      View cluster role list, view cluster role details.

      Member Viewing

      View cluster member list.

      Member Management

      Invite users to join the cluster, change cluster member roles, remove cluster members.

    • Project

      Permission Operations Allowed

      Project Viewing

      View project list, view project details.

      Project Management

      Create project, edit project information, edit project annotations, edit project quotas, edit default container quotas, delete project.

    • Cluster Resources

      Permission Operations Allowed

      Node View

      View node list, view node details.

      Node Management

      Prevent and allow pod scheduling to nodes, access node terminal, edit node taints, edit node labels.

      Custom Resource Definition Viewing

      View custom resource definition list, view custom resource definition details.

      Custom Resource Definition Management

      Edit custom resources, delete custom resources.

    • Cluster Settings

      Permission Operations Allowed

      Cluster Settings View

      View cluster overview, view cluster basic information, view cluster visibility.

      Cluster Settings Management

      Use cluster management features, edit cluster basic information, edit cluster visibility.

    • Application Workloads

      Permission Operations Allowed

      Application Workload Viewing

      • Workload View: View workload list, view workload details.

      • Job View: View job list, view job details.

      • Pod View: View pod list, view pod details, view container details.

      • Service View: View service list, view service details.

      Application Workload Management

      • Workload Management: Create workload, edit workload information, recreate workload, adjust pod replica count, stop workload, rollback workload settings, edit workload settings, delete workload.

      • Job Management: Create job, edit job information, rerun job, pause scheduled job, delete job.

      • Pod Management: Access container terminal, delete pod.

      • Service Management: Create service, edit service information, edit service settings, edit service external access settings, delete service.

  5. Click the Authorized Users tab on the right side of the details page to view users with the current cluster role.

    Parameter Description

    Username

    Name of the user who has been authorized.

    Status

    Current status of the user who has been authorized.

    • Active: The user’s current status is normal.

    • Waiting: The system is creating the user.

    • Disabled: The user is disabled by the platform administrator and cannot log in to the KubeSphere web console.

    • Restricted: The user has failed to log in 10 times in 10 minutes and is blocked from logging in to the KubeSphere web console for 10 minutes.

    Last Login

    The user’s last login time on the KubeSphere platform.

Receive the latest news, articles and updates from KubeSphere


Thanks for the feedback. If you have a specific question about how to use KubeSphere, ask it on Slack. Open an issue in the GitHub repo if you want to report a problem or suggest an improvement.

What’s on this Page