Skip to content

Commit ce5e283

Browse files
k8s-ci-robotk8s-ci-robot
authored
Merge pull request #33289 from kinzhi/kinzhi50
[zh]Update content/zh/docs/reference/labels-annotations-taints/audit-annotations.md
2 parents 5fe82f5 + 1be8669 commit ce5e283

File tree

1 file changed

+36
-2
lines changed

1 file changed

+36
-2
lines changed

content/zh/docs/reference/labels-annotations-taints/audit-annotations.md

Lines changed: 36 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -88,7 +88,7 @@ that was transgressed as well as the specific policies on the fields that were
8888
violated from the PodSecurity enforcement.
8989
9090
See [Pod Security Standards](/docs/concepts/security/pod-security-standards/)
91-
for more information
91+
for more information.
9292
-->
9393
## pod-security.kubernetes.io/audit-violations {#pod-security-kubernetes-io-audit-violations}
9494

@@ -99,4 +99,38 @@ PodSecurity "restricted:latest": allowPrivilegeEscalation != false (container
9999
注解值给出审计策略违规的详细说明,它包含所违反的 [Pod 安全标准](/zh/docs/concepts/security/pod-security-standards/)级别以及
100100
PodSecurity 执行中违反的特定策略及对应字段。
101101

102-
有关详细信息,请参阅 [Pod 安全标准](/zh/docs/concepts/security/pod-security-standards/)
102+
有关详细信息,请参阅 [Pod 安全标准](/zh/docs/concepts/security/pod-security-standards/)
103+
104+
<!--
105+
## authorization.k8s.io/decision
106+
107+
Example: `authorization.k8s.io/decision: "forbid"`
108+
109+
This annotation indicates whether or not a request was authorized in Kubernetes audit logs.
110+
111+
See [Auditing](/docs/tasks/debug-application-cluster/audit/) for more information.
112+
-->
113+
## authorization.k8s.io/decision {#authorization-k8s-io-decision}
114+
115+
例子:`authorization.k8s.io/decision: "forbid"`
116+
117+
此注解在 Kubernetes 审计日志中表示请求是否获得授权。
118+
119+
有关详细信息,请参阅[审计](/zh/docs/tasks/debug-application-cluster/audit/)
120+
121+
<!--
122+
## authorization.k8s.io/reason
123+
124+
Example: `authorization.k8s.io/reason: "Human-readable reason for the decision"`
125+
126+
This annotation gives reason for the [decision](#authorization-k8s-io-decision) in Kubernetes audit logs.
127+
128+
See [Auditing](/docs/tasks/debug-application-cluster/audit/) for more information.
129+
-->
130+
## authorization.k8s.io/reason {#authorization-k8s-io-reason}
131+
132+
例子:`authorization.k8s.io/reason: "Human-readable reason for the decision"`
133+
134+
此注解给出了 Kubernetes 审计日志中 [decision](#authorization-k8s-io-decision) 的原因。
135+
136+
有关详细信息,请参阅[审计](/zh/docs/tasks/debug-application-cluster/audit/)

0 commit comments

Comments
 (0)