README
¶
service-hub
Hub service is the auth service for sealos registry.
Description
Hub service is the auth service for sealos registry.
Sealos registry hub.sealos.cn auth server is at https://hubauth.login.sealos.io/auth.
Sealos use user's kubeconfig yaml as password to auth
Step-by-step installation and run
- A Running
sealos kubernetescluster with admin access.sealos run labring/kubernetes:v1.25.0 labring/helm:v3.8.2 labring/calico:v3.24.1 --masters xxx --nodes xxx -p/-pk - Cluster must have
helmandopenebsinstalled as base requirement.sealos run labring/helm:v3.8.2 sealos run labring/openebs:v1.9.0 - Apply hub auth service yaml, must change crts and keys.
kubectl apply -f deploy/manifests/depoly.yaml
Authenticate and authorize process
- Check kubeconfig is generated by sealos cloud and: repalce api server ip to authserver's env
$( KUBERNETES_SERVICE_HOST) - Use password as kubeconfig to connect sealos cloud kubernetes
- Invoke kubernetes api
/readyzto authenticate - For each push request, get organization CR and check user's uuid is in organization CR's
managerto authorize - Pull request is permittd by default
Documentation
¶
There is no documentation for this package.
Source Files
Directories
Click to show internal directories.
Click to hide internal directories.