Kubernetes is a powerful tool. It can help you manage complex applications and provide you with the ability to easily automate tasks involved in managing them. In this course, we will start exploring Kubernetes from a beginner's standpoint. We will discuss what Kubernetes is and what it does, and we will work with some of the basic functionality of Kubernetes hands-on. We will build a simple Kubernetes cluster. We will also deploy a sample microservice application to the cluster in order to explore how Kubernetes can help easily manage such applications.

A Practical Guide to Kubernetes

# Authorization Methods

Just like almost everything else in Kubernetes, authorization is modular. We can choose to use *Node*, *ABAC*, *Webhook*, or *RBAC* authorization. 

**Node:** Node authorization is used for particular purposes. It grants permissions to kubelets based on the Pods they are scheduled to run.


**ABAC:** Attribute-based access control (ABAC) is based on attributes combined with policies and is considered deprecated in favor of RBAC. Webhooks are used for event notifications through HTTP POST requests.

 **RBAC:** Role-based access control (RBAC) grants (or denies) access to resources based on roles of individual users or groups.

# We will Go with RBAC
Among the four authorization methods, RBAC is the right choice for user-based authorization. Since we'll focus this chapter on the exploration of the means to authorize humans, RBAC will be our primary focus.

*What can we do with RBAC?*
* We can use it to secure the cluster by allowing access only to authorized users. 

* We can define roles that would grant different levels of access to users and groups. Some could have god-like permissions that would allow them to do almost anything, while others could be limited only to basic non-destructive operations. There can be many other roles in between. 
* We can combine RBAC with Namespaces and allow users to operate only within specific segments of a cluster. 

* There are many other combinations we could apply depending on particular use-cases.

We'll leave the rest for later and explore details through a few examples. As you might already suspect, we'll kick it off with a new Minikube cluster.

# Creating A Cluster

The commands that will create a Minikube cluster are as follows.

In this lesson, we will look into various authorization methods and choose one for our use. We'll also create a cluster to start working with the authorization techniques.

Authorizing Requests and Creating a Cluster

Authorization Methods