Difference between revisions of "Initializing the Kubernetes cluster"
Jump to navigation
Jump to search
m (→DEX with LDAP) |
m (→Authentication systems) |
||
| Line 13: | Line 13: | ||
## Run upload_ccu_tls.sh | ## Run upload_ccu_tls.sh | ||
# Spin up login application service. | # Spin up login application service. | ||
| + | # Modify loginapp-cm.yml: server config | ||
| + | ## Modify loginapp-ing-srv.yml: service data, mapping of ports to outside world | ||
| + | ## Modify loginapp-deploy.yml: ID secret for TLS | ||
| + | ## Run start-login-service.sh | ||
| + | # Spin up dex | ||
## Modify dex-cm.yml: server data and LDAP configuration | ## Modify dex-cm.yml: server data and LDAP configuration | ||
| + | ## Modify dex-ing-srv.yml: service data, mapping of ports to outside world | ||
| + | ## Modify dex-deploy.yml: ID secret for TLS | ||
| + | ## Run start-dex-service.sh | ||
Revision as of 17:20, 30 May 2019
Authentication systems
DEX with LDAP
Set up according to this tutorial with customized install scripts in kubernetes/init/dex/
- Create secrets for TLS connections, use certs for ccu.uni-konstanz.de (for now exposed, later switch to internal services):
- Modify ca-cm.yml to contain correct ca.
- Run upload_ccu_tls.sh
- Spin up login application service.
- Modify loginapp-cm.yml: server config
- Modify loginapp-ing-srv.yml: service data, mapping of ports to outside world
- Modify loginapp-deploy.yml: ID secret for TLS
- Run start-login-service.sh
- Spin up dex
- Modify dex-cm.yml: server data and LDAP configuration
- Modify dex-ing-srv.yml: service data, mapping of ports to outside world
- Modify dex-deploy.yml: ID secret for TLS
- Run start-dex-service.sh
