Documentation Portal

Light theme Dark theme

Searching for results...

No results

Your search did not match anything from Mirantis documentation.
Check your spelling or try different keywords.

An error occurred

An error occurred while using the search.
Try your search again or contact us to let us know about it.

Use cases¶

This section illustrates possible use cases for a better understanding on which roles should be assigned to users who perform particular operations in a MOSK cluster:

Role	Use case
`m:kaas@operator`	Member of a dedicated infrastructure team who only manages bare metal hosts and inventories in MOSK
`m:kaas@writer`	Infrastructure Operator who performs the following operations: Performs CRUD operations on namespaces to effectively manage MOSK projects (Kubernetes namespaces) Creates a new project when a new team is being onboarded to MOSK Manages API objects in all namespaces, creates clusters and machines Using `kubeconfig` downloaded through the MOSK management console, has full access to the Kubernetes clusters and StackLight APIs deployed by anyone in MOSK except the management cluster Has the MOSK management API access in the management cluster using the management cluster `kubeconfig` downloaded through the MOSK management console Note To have full access to the management cluster, a `kubeconfig` generated during the management cluster bootstrap is required.
`m:kaas@reader`	Member of a dedicated infrastructure support team responsible for the MOSK infrastructure who performs the following operations: Monitors the cluster and machine live statuses to control the underlying cluster infrastructure health status Performs maintenance on the infrastructure level Performs adjustments on the operating system level
`m:kaas:<namespaceName>@writer`	User who administers a particular project: Has full access to Kubernetes clusters and StackLight APIs deployed by anyone in this project Has full access to MOSK management API in this project Upgrades Kubernetes clusters in the project when an update is available
`m:kaas:<namespaceName>@reader`	Member of a dedicated infrastructure support team in a particular project. For use cases, see the `m:kaas@reader` role described above.
`m:k8s:<namespaceName>:<clusterName>@cluster-admin`	User who has admin access to a Kubernetes cluster deployed in a particular project.
`m:sl:<namespaceName>:<clusterName>@admin`	User who has full access to the StackLight components of a particular Kubernetes cluster deployed in a particular project to monitor the cluster health status.