6 Access control and security

This chapter covers

Areas of attack when using GitOps-driven deployment
Ensuring that critical infrastructure components are protected
Guidelines for choosing the right configuration management pattern
Enhancing security to avoid security pitfalls in GitOps

Access control and security topics are always essential and are especially crucial for deployment and infrastructure management. In this case, the attack surface includes expensive things like infrastructure, dangerous things like policy and compliance, and the most important things like data stores that contain user data. Modern operations methodologies enable engineering teams to move at a much quicker pace and optimize for fast iterations. However, more releases also mean more chances of introducing vulnerabilities and lead to new challenges for security teams. Traditional security processes that rely on human operational knowledge may still work but struggle to scale and meet the needs of enterprises utilizing GitOps with automated build and release infrastructure.

We recommend you read chapters 1 and 2 before reading this chapter.

6.1 Introduction to access control

6.1.1 What is access control?

6.1.2 What to secure

6.1.3 Access control in GitOps

6.2 Access limitations

6.2.1 Git repository access

6.2.2 Kubernetes RBAC

6.2.3 Image registry access

6.3 Patterns

6.3.1 Full access

6.3.2 Deployment repo access

6.3.3 Code access only

6.4 Security concerns

6.4.1 Preventing image pull from untrusted registries

6.4.2 Cluster-level resources in a Git repository

Summary