kubernetes - Can minikube handle oidc authentication? -


i have installed k8s using minikube on ubuntu 16.04 machine virtualbox driver.


i confused various documents related topic. not possible minikube, minikube documents suitable test purpose. believe maybe there way achieve oidc authentication minikube. there link can follow?

i want enable oidc in production environment. not familiar k8s, thought minikube ideal test feature first. reason want know if minikube support oidc. if yes, can make changes here , replicate same in production environment.

i have referred official documentation, not give detailed explanation on how obtain oidc parameters , files modified.

now have spent time on this, answering question can someone. answer yes. minikube provides k8s setup supports oidc based authentication. have been able configure it. here details on how configured kube-apiserver parameters.

minikube start \ --extra-config=apiserver.authorization.mode=rbac \ --extra-config=apiserver.authentication.oidc.issuerurl=https://accounts.google.com \ --extra-config=apiserver.authentication.oidc.usernameclaim=email \ --extra-config=apiserver.authentication.oidc.clientid="client_id"

also use k8s-oidc-helper tool , refresh-token, id_token , other essential parameters. append contents ~/.kube/config file, add path api-server certificate , key. user registered , can use gmail id login k8s


Comments

Popular posts from this blog

php - Vagrant up error - Uncaught Reflection Exception: Class DOMDocument does not exist -

vue.js - Create hooks for automated testing -

Add new key value to json node in java -