OpenID connect tokens

Another popular authentication strategy is OpenID connect tokens. Delegating the identity verification to OAuth2 providers, is a convenient way to manage users. To enable the feature, two required flags have to be set to the API server: --oidc-issuer-url, which indicates the issuer URL that allows the API server to discover public signing keys, and --oidc-client-id, which is the client ID of your app to associate with your issuer. For full information, please refer to the official documentation https://kubernetes.io/docs/admin/authentication/#configuring-the-api-server. The following is an example of how we set Google OpenID authentication with our minikube cluster. The following steps can be programmed easily for authentication ...

Get Kubernetes Cookbook, 2nd Edition now with the O’Reilly learning platform.

O’Reilly members experience live online training, plus books, videos, and digital content from nearly 200 publishers.