Heavily inspired by Buzzfeed’s example, this provides a way of protecting Kubernetes services that have no authentication layer globally from a single OAuth proxy.

Blogpost Quickstart guide SSO in Kubernetes with Google Auth Repo

Many of the Kubernetes OAuth solutions require to run an extra container within the pod using oauth2_proxy, but the project seems to not be maintained anymore. The approach used allows to have a global OAuth2 Proxy that can protect services even in different namespaces, thanks to Kube DNS.

We use this chart in production at MindDoc for protecting endpoints that have no built-in authentication (or that would require to run inner containers), like Kibana, Prometheus, etc…

 

Related

Neo4j

Neo4j

Neo4j is the world’s leading Graph Database. It is a high-performance graph… 

  • 4.5K
Locust

Locust

Locust is an easy-to-use, distributed, user load testing tool. It is intended… 

  • 4.5K
Cluster Autoscaler on AWS

Aws-Cluster-Autoscaler (deprecated)

The cluster autoscaler on AWS scales worker nodes within any specified… 

  • 4.5K

Tell us about a new Kubernetes application

Newsletter

Never miss a thing! Sign up for our newsletter to stay updated.

About

Discover and learn about everything Kubernetes

Navigation
Follow

Submit