1. Proposed title of this feature request
Imperative command to fetch the token value for bound service accounts

2. What is the nature and description of the request?

The default serviceaccount token value mounted in "/run/secrets/kubernetes.io/serviceaccount/token" within the pod and the value of the token returned from the default serviceaccount's secret  using the command "oc sa get-token default" are different.

Why are both the values different? The pod should mount the value of the default serviceaccount's token i.e the value retrieved from "oc sa get-token default" , within the location  "/run/secrets/kubernetes.io/serviceaccount/token".

3. Why does the customer need this? (List the business requirements here)

Before introducing the bound service account feature the imperative method "oc sa get-token default" used to return the same SA token valaue the is mounted inside the pod at the path "/run/secrets/kubernetes.io/serviceaccount/token".

The customer need to fetch the SA token mounted inside the pod using impertiave method. As of now the only way to fetch the SA token is to take rsh/exec into the pod.

4. List any affected packages or components.
oc client binary