check_k8s_auth
ActiveTool of com.googleapis.container/mcp
declared in ESF
Checks whether an action is allowed on a Kubernetes resource. This is similar to running `kubectl auth can-i`.
Parameters schema
{
"type": "object",
"required": [
"parent",
"verb",
"resourceType"
],
"properties": {
"verb": {
"type": "string",
"description": "Required. The verb to check. e.g. \"get\", \"list\", \"watch\", \"create\", \"update\", \"patch\", \"delete\"."
},
"parent": {
"type": "string",
"description": "Required. The cluster to check authorization against. Format: projects/{project}/locations/{location}/clusters/{cluster}"
},
"resource": {
"type": "string",
"description": "Optional. The name of the resource to check."
},
"namespace": {
"type": "string",
"description": "Optional. The namespace of the resource. If not specified, \"default\" is used for namespace-scoped resources."
},
"resourceType": {
"type": "string",
"description": "Required. The type of resource to check. e.g. \"pods\", \"deployments\", \"services\"."
}
},
"description": "Request for checking authorization for a Kubernetes resource."
}Parent server
com.googleapis.container/mcp
1/7 registries