Capabilities and Seccomp Profiles on Kubernetes

Capabilities and Seccomp Profiles on Kubernetes In a previous post we talked about Linux Capabilities and Secure Compute Profiles, in this post we are going to see how we can leverage them on Kubernetes. We will need a Kubernetes cluster, I’m going to use kcli in order to get one. Below command will deploy a Kubernetes cluster on VMs: NOTE: You can create a parameters file with the cluster configuration as well....

Published on April 1, 2021 · Last updated on April 1, 2021 · 9 min · Mario

Integrating our Operators with OLM

Introduction This post is a continuation of our previous blog Writing Operators using the Operator Framework SDK. We will continue working on the operator created on the previous blog, if you want to be able to follow this blog, you will need to run the steps from the previous blog. Operator Lifecycle Manager The Operator Lifecycle Manager is an open source toolkit to manage Operators in an effective, automated and scalable way....

Published on September 16, 2020 · Last updated on September 16, 2020 · 5 min · Mario

Using OpenShift OAuth Proxy to secure your Applications on OpenShift

What is OAuth Proxy A reverse proxy and static file server that provides authentication and authorization to an OpenShift OAuth server or Kubernetes master supporting the 1.6+ remote authorization endpoints to validate access to content. It is intended for use withing OpenShift clusters to make it easy to run both end-user and infrastructure services that do not provider their own authentication. [Source] Securing an Application with OAuth Proxy In this blog post we are going to deploy OAuth Proxy in front of a simple application....

Published on July 30, 2019 · Last updated on August 31, 2022 · 5 min · Mario

Writing Operators using the Operator Framework SDK

Operators, operators everywhere As you may have noticed, Kubernetes operators are becoming more an more popular those days. In this post we are going to explain the basics around Operators and we will develop a simple Operator using the Operator Framework SDK. What is an Operator An operator aims to automate actions usually performed manually while lessening the likelihood of error and simplifying complexity. We can think of an operator as a method of packaging, deploying and managing a Kubernetes enabled application....

Published on May 18, 2019 · Last updated on December 1, 2021 · 20 min · Mario