Use Open ID Connect for Kubernetes API server
One of the most scalable approaches to Kubernetes Authentication has to be OpenID Connect Token. These JWT (Json Web Tokens) are issued by a third party (in our case Keycloak) Token Issuer. Kubernetes can then verify whether the token is valid, without having to query Token Issuer. This is what makes this setup quite decoupled and very scalable.
In this video, you'll learn how to configure the apiserver using a minikube Kubernetes cluster. We're running Keycloak as an Identity Provider outside of the Cluster on our local machine using Docker. This leads us to yet another problem though: How can the Minikube cluster (which is running inside a virtual machine) access the Keycloak instance on the host machine? Learn how we tackle this and other issues in this brand new episode on Kubernetes Authentication.
Видео Use Open ID Connect for Kubernetes API server канала kubucation
In this video, you'll learn how to configure the apiserver using a minikube Kubernetes cluster. We're running Keycloak as an Identity Provider outside of the Cluster on our local machine using Docker. This leads us to yet another problem though: How can the Minikube cluster (which is running inside a virtual machine) access the Keycloak instance on the host machine? Learn how we tackle this and other issues in this brand new episode on Kubernetes Authentication.
Видео Use Open ID Connect for Kubernetes API server канала kubucation
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
OpenID Connect and OAuth 2 explained in under 10 minutes!
TGI Kubernetes 039: Cluster auth with GitHub, Dex and Gangway
How to secure your Microservices with Keycloak - Thomas Darimont![Certifik8s: All You Need to Know About Certificates in Kubernetes [I] - Alexander Brand, Apprenda](https://i.ytimg.com/vi/gXz4cq3PKdg/default.jpg)
Certifik8s: All You Need to Know About Certificates in Kubernetes [I] - Alexander Brand, Apprenda
Kubernetes Access Control - Authentication, Authorization, Admission Control
JWT. Часть 1. Теория
Single Sign-On for Kubernetes - Joel Speed, Pusher
OAuth 2.0 and OpenID Connect in Plain English! - Nate Barbettini - PADNUG
Keycloak Installation - Standalone
Setup Keycloak as an Identity Provider & OpenID Connect Token Issuer
Exploring Authentication & Authorization in Kubernetes
Role Based Access Control (RBAC) with Kubernetes
Nate Barbettini: OAuth 2.0 and OpenID Connect in plain English!
Keycloak Deep Dive
Implementing LDAP authorization for Kubernetes through Webhooks - Jordy Ruiter
Аутентификация: OAuth2.0 и OpenId Connect
How to use Spring Security to Supercharge AppSec with OpenID Connect & OAuth2
Kubernetes on Baremetal: Connecting to your cluster remotely.
What is OAuth 2.0 and OpenID Connect?