From 532900f81909dd380a604dd40047bde120fd996d Mon Sep 17 00:00:00 2001 From: Stewart-YU Date: Fri, 18 Aug 2017 17:30:16 +0800 Subject: [PATCH] Update index.md Fix the format. The format in orginal web page is confusion. --- docs/admin/authorization/index.md | 11 ++++++----- 1 file changed, 6 insertions(+), 5 deletions(-) diff --git a/docs/admin/authorization/index.md b/docs/admin/authorization/index.md index 61ad340eb4..cc2dfed4a6 100644 --- a/docs/admin/authorization/index.md +++ b/docs/admin/authorization/index.md @@ -136,11 +136,12 @@ to determine what access an authorizer is granting. You must include a flag in your policy to indicate which authorization module your policies include: The following flags can be used: - - `--authorization-mode=ABAC` Attribute-Based Access Control (ABAC) mode allows you to configure policies using local files. - - `--authorization-mode=RBAC` Role-based access controlĀ (RBAC) mode allows you to create and store policies using the Kubernetes API. - - `--authorization-mode=Webhook` WebHook is an HTTP callback mode that allows you to manage authorization using a remote REST. - - `--authorization-mode=AlwaysDeny` This flag blocks all requests. Use this flag only for testing. - - `--authorization-mode=AlwaysAllow` This flag allows all requests. Use this flag only if you do not require authorization for your API requests. + + * `--authorization-mode=ABAC` Attribute-Based Access Control (ABAC) mode allows you to configure policies using local files. + * `--authorization-mode=RBAC` Role-based access controlĀ (RBAC) mode allows you to create and store policies using the Kubernetes API. + * `--authorization-mode=Webhook` WebHook is an HTTP callback mode that allows you to manage authorization using a remote REST. + * `--authorization-mode=AlwaysDeny` This flag blocks all requests. Use this flag only for testing. + * `--authorization-mode=AlwaysAllow` This flag allows all requests. Use this flag only if you do not require authorization for your API requests. You can choose more than one authorization module. If one of the modes is `AlwaysAllow`, then it overrides the other modes and all API requests are allowed.