kubectl config: no commands to manage users
kubectl v1.10.0
/kind feature
/sig cli
kubectl config command lets users create/delete/update "context"s. Contexts are composed of "cluster"s and "user"s. Example:
contexts:
- name: my-context
context:
cluster: my-cluster-name
user: my-user
kubectl config lets you create/update/delete "cluster"s, but IT DOESN'T let you manage "user"s:
Available Commands:
current-context Displays the current-context
delete-cluster Delete the specified cluster from the kubeconfig
delete-context Delete the specified context from the kubeconfig
get-clusters Display clusters defined in the kubeconfig
get-contexts Describe one or many contexts
rename-context Renames a context from the kubeconfig file.
set Sets an individual value in a kubeconfig file
set-cluster Sets a cluster entry in kubeconfig
set-context Sets a context entry in kubeconfig
set-credentials Sets a user entry in kubeconfig
unset Unsets an individual value in a kubeconfig file
use-context Sets the current-context in a kubeconfig file
view Display merged kubeconfig settings or a specified kubeconfig file
Why is that?
I think *-cluster commands listed above should also exist for *-user.
ahmetb
All 28 comments
set-credentials configures the user entries
liggitt
on 14 Apr 2018
/reopen
@liggitt I donât see a command to delete the user entries?
ahmetb
on 14 Apr 2018
kubectl config unset users.NAME.
I can understand how it may be more obvious if there were (delete/get/set) *-user(s) commands to match the existing *-cluster(s) and *-context(s) ones, but unset works for deleting user entries and is just as easy to type ÂŻ\_(ă)_/ÂŻ
scottrigby
on 17 May 2018
Issues go stale after 90d of inactivity.
Mark the issue as fresh with /remove-lifecycle stale.
Stale issues rot after an additional 30d of inactivity and eventually close.
If this issue is safe to close now please do so with /close.
Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/lifecycle stale
fejta-bot
on 15 Aug 2018
Stale issues rot after 30d of inactivity.
Mark the issue as fresh with /remove-lifecycle rotten.
Rotten issues close after an additional 30d of inactivity.
If this issue is safe to close now please do so with /close.
Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/lifecycle rotten
fejta-bot
on 14 Sep 2018
/area kubectl
@ahmetb Can we close this?
seans3
on 26 Sep 2018
/remove-lifecycle rotten
seans3
on 26 Sep 2018
@seans3 I'm not sure. I think the lack of user commands still cause symmetry and people need to find hacks like the one mentioned in https://github.com/kubernetes/kubectl/issues/396#issuecomment-389919197 (it probably got so many upvotes from people coming here via Google search results).
ahmetb
on 26 Sep 2018
Thanks to the absence of a command to delete a user credentials, I had to:
- search the web using DontBeEvilEvenIfIMayBeGoogle
- read this thread to the bottom
- try a few commands until I got the syntax right
- make a note in a help file on how to delete a user credentials so that I won't have to search for it again
- write this comment
To delete a user I used the command:
kubectl config unset users.<user-name>
stephaneeybert
on 21 Nov 2018
I dunno, doesn't seem too hard to get a list of users. All I had to do was:
kubectl config view | yaml json write - | jq -r '.users[].name'
... and there you go, easy list of users. /s
cwingrav
on 11 Feb 2019
doesn't seem too hard to get a list of users
Nobody claimed it's hard to "list" users (which comment are you replying to?). You can apply to the same to cluster and context resources, but we have get-clusters and get-contexts commands respectively âso this issue petitions for symmetry.
ahmetb
on 11 Feb 2019
Issues go stale after 90d of inactivity.
Mark the issue as fresh with /remove-lifecycle stale.
Stale issues rot after an additional 30d of inactivity and eventually close.
If this issue is safe to close now please do so with /close.
Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/lifecycle stale
fejta-bot
on 13 May 2019
/remove-lifecycle stale
ahmetb
on 15 May 2019
Issues go stale after 90d of inactivity.
Mark the issue as fresh with /remove-lifecycle stale.
Stale issues rot after an additional 30d of inactivity and eventually close.
If this issue is safe to close now please do so with /close.
Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/lifecycle stale
fejta-bot
on 13 Aug 2019
Anybody stumbling upon this issue from Google looking for an easy way to see all the users that doesn't have external dependencies, this will do it just fine:
kubectl config view -o jsonpath='{range .users[*]}{.name}{"\n"}{end}'
You can then use that in conjunction with the earlier command for kubectl config unset users.<user-name>
voor
on 5 Sep 2019
/remove-lifecycle stale
seans3
on 5 Sep 2019
I would also appreciate something like
kubectl delete context --gc <context-name>
which would check the associated user and cluster, and also delete either or both of those if they are not in use from any other context. Basically a single command to undo the additions made by the likes of gcloud container clusters create. Krew plugin perhaps?
jglick
on 9 Sep 2019
Yes thatâs more suitable for a plugin.
Krew has a âconfig-cleanupâ plugin. I recommend checking out.
ahmetb
on 9 Sep 2019
So, how could we promote movement forward? Are we waiting on a discussion/decision? Would PRs be accepted?
pkoch
on 18 Nov 2019
Issues go stale after 90d of inactivity.
Mark the issue as fresh with /remove-lifecycle stale.
Stale issues rot after an additional 30d of inactivity and eventually close.
If this issue is safe to close now please do so with /close.
Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/lifecycle stale
fejta-bot
on 16 Feb 2020
Krew has a âconfig-cleanupâ plugin. I recommend checking out.
I did look at this but still feel that something like https://github.com/kubernetes/kubectl/issues/396#issuecomment-529471691, deleting specific users/contexts/etc., would be more comfortable: the cleanup plugin requires that you do some preconfiguration to make sure it is not throwing out some things that are still useful. (In my case, I have some EKS configurations that do not work unless I have recently refreshed a session token, a Microk8s configuration that does not work unless that service is currently running, etc.)
jglick
on 17 Feb 2020
Stale issues rot after 30d of inactivity.
Mark the issue as fresh with /remove-lifecycle rotten.
Rotten issues close after an additional 30d of inactivity.
If this issue is safe to close now please do so with /close.
Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/lifecycle rotten
fejta-bot
on 18 Mar 2020
/remove-lifecycle rotten
voor
on 18 Mar 2020
/assign
eddiezane
on 1 Apr 2020
Issues go stale after 90d of inactivity.
Mark the issue as fresh with /remove-lifecycle stale.
Stale issues rot after an additional 30d of inactivity and eventually close.
If this issue is safe to close now please do so with /close.
Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/lifecycle stale
fejta-bot
on 30 Jun 2020
/remove-lifecycle stale
eddiezane
on 30 Jun 2020
To me it seems obvious that there's 2 missing commands... this is part of the output from just running kubectl config:
delete-cluster Delete the specified cluster from the kubeconfig
delete-context Delete the specified context from the kubeconfig
get-clusters Display clusters defined in the kubeconfig
get-contexts Describe one or many contexts
set-cluster Sets a cluster entry in kubeconfig
set-context Sets a context entry in kubeconfig
set-credentials Sets a user entry in kubeconfig
davidbIQ
on 21 Jul 2020
/priority backlog
eddiezane
on 22 Jul 2020
Related issues
armujahid
·
4Comments
whs-dot-hk
·
6Comments
mnussbaum
·
6Comments
pwittrock
·
6Comments
alkar
·
6Comments
Most helpful comment
kubectl config unset users.NAME.I can understand how it may be more obvious if there were (delete/get/set)
*-user(s)commands to match the existing*-cluster(s)and*-context(s)ones, butunsetworks for deleting user entries and is just as easy to type ÂŻ\_(ă)_/ÂŻ