README
¶
Paralus
Paralus is a free, open source tool that enables controlled, audited access to Kubernetes infrastructure for your users, user groups, and services. Ships as a GUI, API, and CLI. We are a CNCF Sandbox project
Paralus can be easily integrated with your pre-existing RBAC configuration and your SSO providers, or Identity Providers (IdP) that support OIDC (OpenID Connect). Through just-in-time service account creation and fine-grained user credential management, Paralus provides teams with an adaptable system for guaranteeing secure access to resources when necessary, along with the ability to rapidly identify and respond to threats through dynamic permission revocation and real time audit logs.
Features
- Creation of custom roles, users, and groups.
- Dynamic and immediate changing and revoking of permissions.
- Ability to control access via pre-configured roles across clusters, namespaces, projects, and more.
- Seamless integration with Identity Providers (IdPs) allowing the use of external authentication engines for users and group definitions, such as GitHub, Google, Azure AD, Okta, and others.
- Automatic logging of all user actions performed for audit and compliance purposes.
- Interact with Paralus either with a modern web GUI (default), a CLI tool called pctl, or Paralus API.
Getting Started
Installing and setting up Paralus takes less time than it takes to brew a (good) cup of coffee! You'll find the instructions here:
🤗 Community & Support
- Check out the Paralus website for the complete documentation and helpful links.
- Join our Slack workspace to get help and to discuss features.
- Tweet @paralus_ on Twitter.
- Create GitHub Issues to report bugs or request features.
- Join our Paralus Community Meeting where we share the latest project news, demos, answer questions, and triage issues.
- 🗓️ 2nd and 4th Tuesday
- ⏰ 20:30 IST | 10:00 EST | 07:00 PST
- 🔗 Zoom
- 🗒️ Meeting minutes
Participation in Paralus project is governed by the CNCF Code of Conduct.
Contributing
We 💖 our contributors! Have a look at our contributor guidelines to get started.
If you’re looking to add a new feature or functionality, create a new Issue.
You're also very welcome to look at the existing issues. If there’s something there that you’d like to work on help improving, leave a quick comment and we'll go from there!
Authors
This project is maintained & supported by Rafay. Meet the maintainers of Paralus.
Documentation
¶
There is no documentation for this package.
Source Files
Directories
¶
| Path | Synopsis |
|---|---|
|
_kratos
|
|
|
api
|
|
|
pkg
|
|
|
proto
|
|
|
rpc/audit
Package eventv1 is a reverse proxy.
|
Package eventv1 is a reverse proxy. |
|
rpc/role
Package rolev3 is a reverse proxy.
|
Package rolev3 is a reverse proxy. |
|
rpc/scheduler
Package rpcv3 is a reverse proxy.
|
Package rpcv3 is a reverse proxy. |
|
rpc/sentry
Package sentry is a reverse proxy.
|
Package sentry is a reverse proxy. |
|
rpc/system
Package systemv3 is a reverse proxy.
|
Package systemv3 is a reverse proxy. |
|
rpc/user
Package userv3 is a reverse proxy.
|
Package userv3 is a reverse proxy. |
|
types/commonpb/v3
Code generated by go generate; DO NOT EDIT.
|
Code generated by go generate; DO NOT EDIT. |
|
types/controller
Package v2 contains API Schema definitions for the cluster v2 API group +kubebuilder:object:generate=true +groupName=cluster.paralus.dev
|
Package v2 contains API Schema definitions for the cluster v2 API group +kubebuilder:object:generate=true +groupName=cluster.paralus.dev |
|
types/infrapb/v3
Code generated by go generate; DO NOT EDIT.
|
Code generated by go generate; DO NOT EDIT. |
|
types/sentry
Code generated by go generate; DO NOT EDIT.
|
Code generated by go generate; DO NOT EDIT. |
|
scripts
|
|