iap_auth

command module
v0.1.3 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Jan 28, 2020 License: Apache-2.0 Imports: 11 Imported by: 0

README

IAP Auth CircleCI

IAP Enabled Google Load Balancer

IAP: Identity Aware Proxy

Read more about IAP here

TLDR;
  1. Setup an https Google load balancer
  2. Enable IAP (Security > Identity Aware Proxy) All eligible proxies will be listed here. IAP toggle will enable Oauth Bearer token based auth.
  3. After enabling and selecting this you can add previously created service accounts to this proxy.
  4. Download this service account credentials and configure as a param in in install

Install as a Service

  1. Add service account to IAP and download the json for service account credentials.
  2. Create this kube secret

kubectl create secret generic some-svc-sa-creds --from-file=sa.json="serviceaccountfiledownloadedfromgcp.json"

  1. Install as a service

helm install gojektech-incubator/iap-auth --name=some-svc-iap --set iapHost=https://somehost,clientId=someclientid,secretName=some-svc-sa-creds

Dev setup

For go1.11, you need an environment variable set to enable go modules

$ export GO111MODULE=on

Assuming you are in the directory iap_auth

Running the tests
$ make setup
$ make test
Building the binary
$ make build
# the compiled binary would be inside iap_auth/out/
Running the binary
$ make copy-config
$ make setup
$ ./out/iap_auth server

Install as a Sidecar

TODO

Documentation

The Go Gopher

There is no documentation for this package.

Source Files

View all Source files

Directories

Path Synopsis
pkg
iap
jws
logger
pkey
proxy
token

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.