May 27, 2019

Kubernetes Authentication with GitLab and Guard

Recently, I had written a blogpost about Kubernetes Authentication with GitHub. Then I realized that someone could prefer GitLab as his main managing system for git repositories. If it’s your case then this blogpost is what you were looking for :) Intro Guard from AppsCode is a Kubernetes Authentication WebHook Server. Using guard, you can log into your Kubernetes cluster using GitLab accounts, which is the easiest solution in case you don’t have LDAP infrastructure in your company but you still want to give users the possibility to authenticate against your Kubernetes clusters and to allow cluster administrators to setup RBAC rules based on membership in GitLab teams. Read more

August 7, 2018

Kubernetes LDAP Authentication

Recently I had a chance to work on implementing LDAP authentication for Kubernetes. This post will describe my experience and some underwater stones that I’ve faced on my way to it. What tool should I choose? There a lot of tools and blog posts/videos that can help you to add LDAP authentication for your Kubernetes cluster: dex from CoreOS - I don’t know anything about the future of this project because of the fact that CoreOS was acquired by RedHat. Read more

July 6, 2018

How to Enable Kubernetes Auditing with Kubeadm

Welcome back! In this post, I want to describe how you can enable auditing in Kubernetes cluster that is going to be deployed with kubeadm. Auditing is really important in case you’re actively using Kubernetes cluster and you want to know what’s really happenening behind the curtains. With auditing you can answer the following questions: what happened? when did it happen? who initiated it? on what did it happen? Read more

November 9, 2017

How to Use Notary

Notary is a tool for publishing and managing trusted collections of content. Publishers can digitally sign collections and consumers can verify integrity and origin of content. This ability is built on a straightforward key management and signing interface to create signed collections and configure trusted publishers With Notary anyone can provide trust over arbitrary collections of data. Using The Update Framework (TUF) as the underlying security framework, Notary takes care of the operations necessary to create, manage, and distribute the metadata necessary to ensure the integrity and freshness of your content. Read more

Creative Commons - Attribution, Noncommercial, No Derivative Works 3.0 License