A helper web-app which talks to one or more Dex Identity services to generate
kubectl commands for creating and modifying a kubeconfig.
- The Web UI supports generating tokens against multiple clusters
- Dev / Staging / Production etc
- Generates appropriate
kubectl configcommands (user/cluster/context) - SSL Support
make
Creates ./bin/dex-k8s-authenticator
make container
Follow the example here: https://github.com/coreos/dex/blob/master/Documentation/getting-started.md
Start it with using the provided ./examples/dex-server-config-dev.yaml
./bin/dex-k8s-authenticator --config ./examples/config.yaml
- Browse to http://localhost:5555
- Click 'Example Cluster'
- Click 'Log in with Email'
- Login with
[email protected]followed by the passwordpassword - You should be redirected back to the dex-k8s-authenticator
This project provides helm charts for deploying both dex and
dex-k8s-authenticator to your Kubernetes cluster. Instructions are provided
for each chart.
You can run multiple Dex Server instances with different backends if required.
Just update the examples/config.yaml to add an extra cluster to the list with the
required settings.
Mount a directory containing your self signed certificates to /certs and the entrypoint will update the local trust store before starting dex-k8s-authenticator
docker run --rm -t -i -v /tmp/certs:/certs:ro -v /tmp/config.yml:/tmp/config.yml:ro mintel/dex-k8s-authenticator:latest --config /tmp/config.yml
Add list of Certificates to your values.yaml file, certificates need to be base64 encoded and their names need to end with either ".crt" or ".pem"
A similar web UI that generates kubectl configurations without using dex to authenticate first
OIDC helpers that run locally to setup kubectl:
- https://github.com/micahhausler/k8s-oidc-helper
- https://github.com/coreos/dex/tree/master/cmd/example-app
A Kubernetes JWT webhook helper with a similar UX to Kuberos