My proposal is that your k8s cluster or management should be completely seperate from your private registry. Then your private reigstry should be completely seperate from your identity provider. The main reason is we want to decrease the chance of circular dependencies – that can never be fixed. Should all be in different places private […]
docker rm -f $(docker ps -qa) docker rmi -f $(docker images -q) docker volume rm $(docker volume ls -q)
I think by now we can see that delegating authorization using SAML or OpenIDC connect not only makes your life easier as a developer, it also makes administration easier and gives you and your users a more secure product. Today, I am looking at using Keycloak as your identity provider for zimbra and how to […]
This is a common requirement, how is it achieved? Acccording to the docs on Hashicorp audit deviced: https://www.vaultproject.io/docs/audit You simply run this as the root user: vault audit enable file file_path=/var/log/vault_audit.log
I like Keycloak a lot. A single place to manage your authentication for many systems that you can use to federate users from an existing directory of users. For more information look at my Keycloak Essentials Summary or the official Keycloak documentation There are a host of benefits but mainly it lets applications focus on […]