With the development of the cloud native ecosystem, more and more enterprises run their micro-service application systems on Kubernetes. Many cloud-native platforms have comprehensive and diverse functions, will also be deployed on Kubernetes in the form of micro-services. For these micro-service systems, authorization is an inescapable basic function. This speech will list some traditional application authorization implementation methods, advantages and disadvantages, and will also elaborate on the practice of our cloud native management platform based on Kubernetes. We use the Kubernetes CRD mechanism and learn from the Kubernetes RBAC implementation principle to design the role permission model. At the same time, we use the list/watch mechanism of the Kubernetes apiserver to implement the SDK, load the permission information into the memory, and provide authorization capabilities for micro-services. It has the advantages of simple implementation, fast and accurate authorization.