I have used mozilla’s Django OpenID Connect client before, but this time I found something called Django-AllAuth. Django-Allauth seems packed full of features and is well maintained. So I am going to test whether I can use it with Keycloak as the identity provider for users on django and django admin. Initial Setup With your […]
My proposal is that your k8s cluster or management should be completely seperate from your private registry. Then your private reigstry should be completely seperate from your identity provider. The main reason is we want to decrease the chance of circular dependencies – that can never be fixed. Should all be in different places private […]
docker rm -f $(docker ps -qa) docker rmi -f $(docker images -q) docker volume rm $(docker volume ls -q)
I think by now we can see that delegating authorization using SAML or OpenIDC connect not only makes your life easier as a developer, it also makes administration easier and gives you and your users a more secure product. Today, I am looking at using Keycloak as your identity provider for zimbra and how to […]
This is a common requirement, how is it achieved? Acccording to the docs on Hashicorp audit deviced: https://www.vaultproject.io/docs/audit You simply run this as the root user: vault audit enable file file_path=/var/log/vault_audit.log