Authorization

As a cluster administrator we can do all sorts of things in the cluster, but at a later point of time we would like to give access the cluster access to some developers, other admins or even some applications such as Jenkins or monitoring tools like Prometheus by giving them accounts with passwords SSL & TLS Certificates certificates or Service Accounts etc.

Authorization is what one can do after gaining access to the cluster

• we would not want the developer to make any changes to the cluster like delete a Worker Node, we would only want to give them access to change or make some Deployment.
• just like we restrict applications with Namespaces, we would like to restrict the users with namespaces too.