Update README and client id

Author: Krishna PMV

Diff for: README.md

@@ -89,26 +89,23 @@ kubectl create -f dex-deploy.yml
 
 Now it should work: try https://login.k8s.example.org, login and retrieve k8s configuration.
 
-```shell
-kubectl --user=janedoe get po
-Error from server (Forbidden): pods is forbidden: User "https://dex.k8s.example.org/dex#janedoe" cannot list pods in the namespace "auth"
-```
+You can decode the id_token to verify the returned claims using: https://jwt.io/
 
-User prefix can be updated with the **--oidc-username-prefix** apiserver option.
-
-* Create RBAC resource:
+* Create RBAC resource (assgin a group called "admins" cluster admin role):
 
 ```shell
-kubectl create -f rbac-admins.yml
+kubectl create -f rbac.yml
 ```
 
-Try again:
+Now copy paste the returned ~/.kube/config from loginapp and try:
 
 ```shell
-kubectl --user=janedoe get po
+kubectl get po
 NAME                        READY     STATUS    RESTARTS   AGE
 dex-6f6568d499-m89z6        1/1       Running   0          7m
 loginapp-6474748f4b-gb5kb   1/1       Running   0          8m
 loginapp-6474748f4b-prq25   1/1       Running   0          8m
 loginapp-6474748f4b-vnvnb   1/1       Running   0          8m
 ```
+
+You can also use id_token for signing on the k8s dashboard 

Diff for: dex-cm.yml

@@ -93,7 +93,7 @@ data:
       skipApprovalScreen: true
 
     staticClients:
-    - id: login
+    - id: loginapp
       redirectURIs:
       - 'https://login.k8s.example.org:32002/callback'
       name: 'Login Application'

Diff for: loginapp-cm.yml

@@ -7,7 +7,7 @@ metadata:
 data:
   config.yaml: |
     debug: false
-    client_id: "login"
+    client_id: "loginapp"
     client_secret: 4TORGiNV9M54BTk1v7dNuFSaI6hUjfjr
     issuer_url: "https://dex.k8s.example.org:32000/dex"
     issuer_root_ca: "/etc/ssl/ca.pem"