Roles and ClusterRoles
Kubernetes object that define a set of permissions
These permissions determine what users can do in the cluster
Roles
Define permissions within a particular namespace
ClusterRoles
Define cluster-wide permissions
RoleBinding
RoleBindings map users to Roles
ClusterRoleBinding
ClusterRoleBindings map users to ClusterRoles
Service Account
Account used by container process within pods to authenticate with Kubernetes API
If pods need to communicate with Kubernetes API, service accounts can be used to control their access
Service accounts exist within namespaces