teleport

mirror of https://github.com/gravitational/teleport synced 2024-10-22 18:23:25 +00:00

History

Andrew Lytvynov 1159c4ba7b Adda a helm chart for in-cluster kubernetes_service agent (#4963 ) * Add helm chart for in-cluster kubernetes_service agent This is a simplified version of the teleport chart, intended to only run a "stateless" `kubernetes_service` instance within a kubernetes cluster. This instance joins an externally-managed teleport cluster, given a proxy address and a join token. The connection is always over a reverse tunnel, per our recommended approach. The chart is opinionated and only lets the user modify the bare minimum. * Apply suggestions from code review Co-authored-by: Gus Luxton <gus@gravitational.com> * Move join token into a secret Secret can be more tightly restricted via RBAC, and encrypted at rest with KMSs. Also, a few other small tweaks for UX. Co-authored-by: Andrew Lytvynov <andrew@gravitational.com> Co-authored-by: Gus Luxton <gus@gravitational.com>	2020-11-24 20:20:00 -08:00
..
.gitignore	Universal kubeconfig provisioning script (#4086 )	2020-07-21 12:31:22 -07:00
get-kubeconfig.sh	Adda a helm chart for in-cluster kubernetes_service agent (#4963 )	2020-11-24 20:20:00 -08:00

Andrew Lytvynov 1159c4ba7b

Adda a helm chart for in-cluster kubernetes_service agent (#4963 )

* Add helm chart for in-cluster kubernetes_service agent

This is a simplified version of the teleport chart, intended to only run
a "stateless" `kubernetes_service` instance within a kubernetes cluster.
This instance joins an externally-managed teleport cluster, given a
proxy address and a join token. The connection is always over a reverse
tunnel, per our recommended approach.

The chart is opinionated and only lets the user modify the bare minimum.

* Apply suggestions from code review

Co-authored-by: Gus Luxton <gus@gravitational.com>

* Move join token into a secret

Secret can be more tightly restricted via RBAC, and encrypted at rest
with KMSs.

Also, a few other small tweaks for UX.

Co-authored-by: Andrew Lytvynov <andrew@gravitational.com>
Co-authored-by: Gus Luxton <gus@gravitational.com>

2020-11-24 20:20:00 -08:00

.gitignore

Universal kubeconfig provisioning script (#4086 )

2020-07-21 12:31:22 -07:00

get-kubeconfig.sh

Adda a helm chart for in-cluster kubernetes_service agent (#4963 )

2020-11-24 20:20:00 -08:00