Initializing the Kubernetes cluster

From Collective Computational Unit
Revision as of 17:20, 30 May 2019 by Bastian.goldluecke (talk | contribs) (Authentication systems)
Jump to navigation Jump to search


Authentication systems

DEX with LDAP

Set up according to this tutorial with customized install scripts in kubernetes/init/dex/

  1. Create secrets for TLS connections, use certs for ccu.uni-konstanz.de (for now exposed, later switch to internal services):
    1. Modify ca-cm.yml to contain correct ca.
    2. Run upload_ccu_tls.sh
  2. Spin up login application service.
  3. Modify loginapp-cm.yml: server config
    1. Modify loginapp-ing-srv.yml: service data, mapping of ports to outside world
    2. Modify loginapp-deploy.yml: ID secret for TLS
    3. Run start-login-service.sh
  4. Spin up dex
    1. Modify dex-cm.yml: server data and LDAP configuration
    2. Modify dex-ing-srv.yml: service data, mapping of ports to outside world
    3. Modify dex-deploy.yml: ID secret for TLS
    4. Run start-dex-service.sh
Retrieved from "https://ccu.uni-konstanz.de:443/w/index.php?title=Initializing_the_Kubernetes_cluster&oldid=363"