# Managing Sessions Whenever a user starts mirrord on a cluster where mirrord for Teams is installed, the Operator assigns a session to this user, until they stop running mirrord, at which point the session is closed in the Operator automatically. {% hint style="info" %} This feature is available to users on the Team and Enterprise pricing plans. {% endhint %} ### See active Operator sessions Users can use the command `mirrord operator status` to see active sessions in the cluster. For example, in the following output, we can see the session ID, the target used, the namespace of the target, the session duration, and the user running that session. We can also see that `Ports` is empty, meaning the user isn't stealing or mirroring any traffic at the moment. ``` +------------------+-----------------------------+-----------+---------------------------------------------------------------+-------+------------------+ | Session ID | Target | Namespace | User | Ports | Session Duration | +------------------+-----------------------------+-----------+---------------------------------------------------------------+-------+------------------+ | 487F4F2B6D2376AD | deployment/ip-visit-counter | default | Aviram Hassan/aviram@metalbear.co@avirams-macbook-pro-2.local | | 4s | +------------------+-----------------------------+-----------+---------------------------------------------------------------+-------+------------------+ ``` The `User` field is generated in the following format - `whoami/k8s-user@hostname`. `whoami` and `hostname` are from the local machine, while `k8s-user` is the user we see from the operator side. In this example, we can see that the session has an active steal on port 80, filtering HTTP traffic with the following filter: `baggage: .*mirrord-session=Avi.+` ``` +------------------+-----------------------------+-----------+---------------------------------------------------------------+----------------------------------------------------------+------------------+ | Session ID | Target | Namespace | User | Ports | Session Duration | +------------------+-----------------------------+-----------+---------------------------------------------------------------+----------------------------------------------------------+------------------+ | C527FE7D9C30979E | deployment/ip-visit-counter | default | Aviram Hassan/aviram@metalbear.co@avirams-macbook-pro-2.local | Port: 80, Type: steal, Filter: header=baggage: .*mirrord-session=Avi.+ | 13s | +------------------+-----------------------------+-----------+---------------------------------------------------------------+----------------------------------------------------------+------------------+ ``` ### Stop active Operator sessions Users may also forcefully stop a session with the `mirrord operator session` CLI commands. These allow users to manually close Operator sessions while they're still alive (user is still running mirrord). The session management commands are: * `mirrord operator session kill-all` which will forcefully stop **ALL** sessions! * `mirrord operator session kill --id {id}` which will forcefully stop a session with `id`, where you may obtain the session id through `mirrord operator status`; #### `sessions` RBAC Every `mirrord-operator-user` has access to **all** session operations by **default**, as they come with `deletecollection` and `delete` privileges for the `sessions` resource. You may limit this by changing the RBAC configuration. Here is a sample `role.yaml` with the other Operator rules omitted: ```yaml apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: name: mirrord-operator-user rules: - apiGroups: - operator.metalbear.co resources: - sessions verbs: - deletecollection - delete ``` * `mirrord operator session kill-all` requires the `deletecollection` verb; * `mirrord operator session kill --id {id}` requires the `delete` verb; --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://metalbear.com/mirrord/docs/sharing-the-cluster/sessions.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.