Categories
django Keycloak

Using Keycloak as the identity provider for users on django and django-admin

I have used mozilla’s Django OpenID Connect client before, but this time I found something called Django-AllAuth. Django-Allauth seems packed full of features and is well maintained. So I am going to test whether I can use it with Keycloak as the identity provider for users on django and django admin. Initial Setup With your […]

Categories
Kubernetes

Seperate your K8s cluster, Identity Provider and Private Registry.

My proposal is that your k8s cluster or management should be completely seperate from your private registry. Then your private reigstry should be completely seperate from your identity provider. The main reason is we want to decrease the chance of circular dependencies – that can never be fixed. Should all be in different places private […]

Categories
Uncategorized

Rancher Single Node Docker Install Completely Remove and Uninstall

docker rm -f $(docker ps -qa) docker rmi -f $(docker images -q) docker volume rm $(docker volume ls -q)

Categories
Keycloak

Using Keycloak as the OpenIDC Identity Provider (to Login) to Zimbra

I think by now we can see that delegating authorization using SAML or OpenIDC connect not only makes your life easier as a developer, it also makes administration easier and gives you and your users a more secure product. Today, I am looking at using Keycloak as your identity provider for zimbra and how to […]

Categories
Uncategorized

Hashicorp Vault Auditing: Who has looked at what

This is a common requirement, how is it achieved? Acccording to the docs on Hashicorp audit deviced: https://www.vaultproject.io/docs/audit You simply run this as the root user: vault audit enable file file_path=/var/log/vault_audit.log