From 2d76f157e03b7acc2dbed61e25d1d10a1429ad1d Mon Sep 17 00:00:00 2001
From: Jake Sanders <jsand@google.com>
Date: Wed, 27 Feb 2019 16:12:48 -0800
Subject: [PATCH] Update rbac.md

Documentation for https://github.com/kubernetes/enhancements/issues/789
---
 content/en/docs/reference/access-authn-authz/rbac.md | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/content/en/docs/reference/access-authn-authz/rbac.md b/content/en/docs/reference/access-authn-authz/rbac.md
index cccdcf255d43d..ed51dcefb5cf7 100644
--- a/content/en/docs/reference/access-authn-authz/rbac.md
+++ b/content/en/docs/reference/access-authn-authz/rbac.md
@@ -489,14 +489,19 @@ NOTE: editing the role is not recommended as changes will be overwritten on API
 </tr>
 <tr>
 <td><b>system:basic-user</b></td>
-<td><b>system:authenticated</b> and <b>system:unauthenticated</b> groups</td>
+<td><b>system:authenticated</b> group</td>
 <td>Allows a user read-only access to basic information about themselves.</td>
 </tr>
 <tr>
 <td><b>system:discovery</b></td>
-<td><b>system:authenticated</b> and <b>system:unauthenticated</b> groups</td>
+<td><b>system:authenticated</b> group</td>
 <td>Allows read-only access to API discovery endpoints needed to discover and negotiate an API level.</td>
 </tr>
+<tr>
+<td><b>system:public-info-viewer</b></td>
+<td><b>system:authenticated</b> and <b>system:unauthenticated</b> groups</td>
+<td>Allows read-only access to non-sensitive cluster information.</td>
+</tr>
 </table>
 
 ### User-facing Roles