nikdoof/vCluster-OIDC
1
1
Fork 0
mirror of https://github.com/n8sOrganization/vCluster-OIDC.git synced 2025-12-13 11:42:17 +00:00
Code Issues Packages Projects Releases Wiki Activity

Update README.md

Browse Source
This commit is contained in:
Nate Reid
2023-04-20 14:17:13 -04:00
committed by GitHub
parent c45b1351d8
commit 89359abd38
1 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
README.md
View File

@@ -6,7 +6,7 @@ We can configure a vCluster for OIDC auth at provisioning time. For this, I'm us
To keep this page compact, I'm only showing the areas of the stock vCluster chart Values file you need to modify. As of this writing, the chart is using v1.26.1 K8s. I've changed it to 1.27.1 for my deployments. You'd need to update the image tags for the other control plane images defined in the chart as well.
Following from my post on OIDC with K8s, you should understand the purpose of `extraArgs` below. I'm then using a handy part of the Values file that lets us use variables within it (Those are wrapped to tpl logic in teh Template). The manifestsTemplate Value will create the cluster-admin ClusterRoleBinding in the vCluster based on a value we supply at creation time.
Following from my post on OIDC with K8s, you should understand the purpose of `extraArgs` below. I'm then using a handy part of the Values file that lets us use variables within it (Those are wrapped to tpl logic in template). The manifestsTemplate Value will create the cluster-admin ClusterRoleBinding in the vCluster based on a value we supply at creation time.
Lastly, I'm creating a LoadBalancer service for the cluster so it will be accessible outside of the host cluster. This would ideally be an Ingress with wildcard URL match.
@@ -58,7 +58,7 @@ kubectl create ns cluster-a
Replace the `team-a-cluster-admins` value below with a group from your Auth server that a user you will auth as later is a member of.
```console
helm install cluster-a loft-sh/vcluster-k8s -n temp -f ./vals.yaml --set ClusterAdminGroup=team-a-cluster-admins
helm install cluster-a loft-sh/vcluster-k8s -n cluster-a -f ./vals.yaml --set ClusterAdminGroup=team-a-cluster-admins
```
### Once the vCluster install is complete, we'll retrieve the generated kubeconfig file and modify it
@@ -66,7 +66,7 @@ helm install cluster-a loft-sh/vcluster-k8s -n temp -f ./vals.yaml --set Cluster
1. Determine the LB External IP that was assigned and note for later
```console
kubectl get svc -n temp cluster-a-lb
kubectl get svc -n cluster-a cluster-a-lb
```
2. Retrieve kubeconfig file