Validating Kubernetes service account token in your app using TokenReview API

Photo by Markus Spiske on Unsplash

Every API call to Kubernetes API server is made using an authorization bearer token. These tokens come in two flavors:

  • Short lasting user identity tokens
  • Long lasting service account tokens

Both these tokens are so called tokens, which are increasingly becoming a standard way to…