Skip to content

samalws-tob/kubernetes-playground

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
keys
keys
 
 
test-proj
test-proj
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
cleanup.sh
cleanup.sh
 
 
curlScript.sh
curlScript.sh
 
 
etc.yaml
etc.yaml
 
 
install.sh
install.sh
 
 
istiosecret.yaml
istiosecret.yaml
 
 

Repository files navigation

This repo creates a kubernetes cluster which:

  • Has an istio service mesh, and tests out its authorization system
  • Pulls secrets automatically from hashicorp vault
  • Serves an nginx example page from an ingress gateway using certs pulled from vault

Run install.sh to try it out. It assumes you have a local minikube cluster running.

DO NOT use this as a model for production code, especially since it doesn't encrypt secrets at rest (yet).

Features that I didn't get around to adding but would like to eventually try out:

  • Encrypting secrets at rest using trousseau (which enables KMS using vault)
  • Gitops using argo or flux
  • Logging

About

Trying out some kubernetes security features

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages