diff --git a/kyuubi-server/src/main/scala/org/apache/kyuubi/engine/KubernetesApplicationOperation.scala b/kyuubi-server/src/main/scala/org/apache/kyuubi/engine/KubernetesApplicationOperation.scala
index 98427305161..5f21342e93f 100644
--- a/kyuubi-server/src/main/scala/org/apache/kyuubi/engine/KubernetesApplicationOperation.scala
+++ b/kyuubi-server/src/main/scala/org/apache/kyuubi/engine/KubernetesApplicationOperation.scala
@@ -55,20 +55,24 @@ class KubernetesApplicationOperation extends ApplicationOperation with Logging {
   private var cleanupTerminatedAppInfoTrigger: Cache[String, ApplicationState] = _
 
   private def getOrCreateKubernetesClient(kubernetesInfo: KubernetesInfo): KubernetesClient = {
+    checkKubernetesInfo(kubernetesInfo)
+    kubernetesClients.computeIfAbsent(kubernetesInfo, kInfo => buildKubernetesClient(kInfo))
+  }
+
+  // Visible for testing
+  private[engine] def checkKubernetesInfo(kubernetesInfo: KubernetesInfo): Unit = {
     val context = kubernetesInfo.context
     val namespace = kubernetesInfo.namespace
 
-    if (allowedContexts.nonEmpty && !allowedContexts.contains(context)) {
+    if (allowedContexts.nonEmpty && context.exists(!allowedContexts.contains(_))) {
       throw new KyuubiException(
         s"Kubernetes context $context is not in the allowed list[$allowedContexts]")
     }
 
-    if (allowedNamespaces.nonEmpty && !allowedNamespaces.contains(namespace)) {
+    if (allowedNamespaces.nonEmpty && namespace.exists(!allowedNamespaces.contains(_))) {
       throw new KyuubiException(
         s"Kubernetes namespace $namespace is not in the allowed list[$allowedNamespaces]")
     }
-
-    kubernetesClients.computeIfAbsent(kubernetesInfo, kInfo => buildKubernetesClient(kInfo))
   }
 
   private def buildKubernetesClient(kubernetesInfo: KubernetesInfo): KubernetesClient = {
diff --git a/kyuubi-server/src/test/scala/org/apache/kyuubi/engine/KubernetesApplicationOperationSuite.scala b/kyuubi-server/src/test/scala/org/apache/kyuubi/engine/KubernetesApplicationOperationSuite.scala
new file mode 100644
index 00000000000..2ea1939d2fc
--- /dev/null
+++ b/kyuubi-server/src/test/scala/org/apache/kyuubi/engine/KubernetesApplicationOperationSuite.scala
@@ -0,0 +1,59 @@
+/*
+ * Licensed to the Apache Software Foundation (ASF) under one or more
+ * contributor license agreements.  See the NOTICE file distributed with
+ * this work for additional information regarding copyright ownership.
+ * The ASF licenses this file to You under the Apache License, Version 2.0
+ * (the "License"); you may not use this file except in compliance with
+ * the License.  You may obtain a copy of the License at
+ *
+ *    http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package org.apache.kyuubi.engine
+
+import org.apache.kyuubi.{KyuubiException, KyuubiFunSuite}
+import org.apache.kyuubi.config.KyuubiConf
+
+class KubernetesApplicationOperationSuite extends KyuubiFunSuite {
+
+  test("test check kubernetes info") {
+    val kyuubiConf = KyuubiConf()
+    kyuubiConf.set(KyuubiConf.KUBERNETES_CONTEXT_ALLOW_LIST.key, "1,2")
+    kyuubiConf.set(KyuubiConf.KUBERNETES_NAMESPACE_ALLOW_LIST.key, "ns1,ns2")
+
+    val operation = new KubernetesApplicationOperation()
+    operation.initialize(kyuubiConf)
+
+    operation.checkKubernetesInfo(KubernetesInfo(None, None))
+    operation.checkKubernetesInfo(KubernetesInfo(Some("1"), None))
+    operation.checkKubernetesInfo(KubernetesInfo(Some("2"), None))
+    operation.checkKubernetesInfo(KubernetesInfo(Some("1"), Some("ns1")))
+    operation.checkKubernetesInfo(KubernetesInfo(Some("1"), Some("ns2")))
+    operation.checkKubernetesInfo(KubernetesInfo(Some("2"), Some("ns1")))
+    operation.checkKubernetesInfo(KubernetesInfo(Some("2"), Some("ns2")))
+
+    intercept[KyuubiException] {
+      operation.checkKubernetesInfo(KubernetesInfo(Some("3"), Some("ns1")))
+    }
+    intercept[KyuubiException] {
+      operation.checkKubernetesInfo(KubernetesInfo(Some("1"), Some("ns3")))
+    }
+    intercept[KyuubiException] {
+      operation.checkKubernetesInfo(KubernetesInfo(Some("3"), None))
+    }
+    intercept[KyuubiException] {
+      operation.checkKubernetesInfo(KubernetesInfo(None, Some("ns3")))
+    }
+
+    kyuubiConf.unset(KyuubiConf.KUBERNETES_CONTEXT_ALLOW_LIST.key)
+    operation.checkKubernetesInfo(KubernetesInfo(Some("3"), None))
+    kyuubiConf.unset(KyuubiConf.KUBERNETES_NAMESPACE_ALLOW_LIST.key)
+    operation.checkKubernetesInfo(KubernetesInfo(None, Some("ns3")))
+  }
+}