DevOps, Kubernetes, OpenStack, Homelab
OAuth2 Proxy with Kubernetes Service Accounts
OAuth2 Proxy is a popular tool used to secure access to web applications, which it does by integrating authentication with an existing OAuth2 identity provider. I use OAuth2 Proxy in my Kubernetes clusters to secure frontends like Prometheus, Alertmanager, and other internal tools. This allows me to use my personal GitLab instance to act as a central identity provider, reducing the number of passwords needed to be maintained. Recently, I wanted to allow secure, programmatic access to Alertmanager between multiple Kubernetes clusters....