cover of episode Easy Kubernetes Auth and RBAC with Infra

Easy Kubernetes Auth and RBAC with Infra

2023/2/3
logo of podcast DevOps and Docker Talk: Cloud Native Interviews and Tooling

DevOps and Docker Talk: Cloud Native Interviews and Tooling

Frequently requested episodes will be transcribed first

Shownotes Transcript

Bret is joined by Matt Williams of Infra to show off their open source project Infra, which provides easy, centralized RBAC and auth to Kubernetes and more.

Infra is a new company taking on simplifying centralized infrastructure, user authentication and permissions. Their open source tool by the same name is quite easy to start with. In this episode, Matt does a great job of explaining the pain points of Kubernetes user management, certificate distribution and revocation, and more pain points that Infra is bringing simplicity to.

Streamed live on YouTube on November 10, 2022. Includes demos.

Unedited live recording) of this show on YouTube (Ep #191).

Topics★Infra Website)Infra on GitHub)All Day DevOps free conference)

Matt Williams===========Matt on Twitter)Matt's YouTube Channel)

Join my Community★New live course on CI automation and gitops deployments)Best coupons for my Docker and Kubernetes courses)Chat with us and fellow students on our Discord Server DevOps Fans)****Grab some merch at Bret's Loot Box)

Homepage bretfisher.com)

  • (00:00) - DDT MAIN

  • (00:04) - Intro

  • (00:54) - Bret intro

  • (01:53) - Main show

  • (02:08) - Introducing Matt

  • (02:40) - Today on the podcast

  • (03:06) - Infra HQ and Company History

  • (03:52) - How Infra came to be

  • (06:40) - Datadog

  • (08:34) - Infra and open source

  • (09:59) - How Infra can help

  • (10:24) - Core Infra functionality

  • (11:56) - Bad idea

  • (12:48) - Can't revoke certificates

  • (16:11) - Painful Certificate Redistribution

  • (17:11) - Why you need Infra

  • (18:41) - Question

  • (19:38) - Service accounts

  • (20:22) - kubectl and pronunciations

  • (21:57) - Question about OIDC

  • (23:45) - Not just a Kubernetes tool

  • (25:27) - Dealing with Keys is Hard

  • (26:08) - Offboarding can be harder than Onboarding

  • (28:24) - Workflow

  • (29:21) - Demo intro

  • (29:51) - End demo

  • (30:02) - Cloud hosted and self-hosted

  • (30:35) - Providers, Okta

  • (32:02) - Is Infra GIOps Compatible?

  • (34:53) - Quick summary of the demo for audio listeners

  • (36:44) - Dumbed down roles?

  • (38:08) - Question

  • (38:52) - A tool to add to your toolbox

  • (40:38) - Getting started and contributing

  • (41:25) - Question

  • (41:51) - Auditing in the future

  • (42:49) - A Safe and Secure Model

  • (43:52) - Wrapping up

  • (45:42) - Outro

You can also support my free material by subscribing to my YouTube) channel and my weekly newsletter at bret.news)!

Grab the best coupons for my Docker and Kubernetes courses)**.Join my cloud native DevOps community on Discord).**Grab some merch at Bret's Loot Box)Homepage bretfisher.com)