phippyandfriends | Simple demonstration , inspired by the Children | Azure library
kandi X-RAY | phippyandfriends Summary
kandi X-RAY | phippyandfriends Summary
The Children's Guide to Kubernetes is a simple, gentle answer a father gives his daughter, when she inquisitively asked about Kubernetes. It was written by Matt Butcher on the DEIS blog. We loved the story and the imagery in it and thought the characters from the Illustrated Guide would make for an interesting demo. The demo has a few services, each of which represent an individual character in the story, as well as some we added. Each service is written in a different language, showing how the Azure Kubernetes Service (AKS) cluster can run anything you can bring it.
Support
Quality
Security
License
Reuse
Top functions reviewed by kandi - BETA
Currently covering the most popular Java, JavaScript and Python libraries. See a Sample of phippyandfriends
phippyandfriends Key Features
phippyandfriends Examples and Code Snippets
Community Discussions
Trending Discussions on phippyandfriends
QUESTION
I've been following the following tutorial for my AKS setup: https://github.com/Azure/phippyandfriends. But now I'm struggling to get HTTPS working.
Here's what i didI've generated a cert and key via following shell script run it in cmd
bash generate-wildcard-certificate.sh mydomain.somenumbers.westeurope.aksapp.io
That generates 2 files:
mydomain.somenumbers.westeurope.aksapp.io.crt
mydomain.somenumbers.westeurope.aksapp.io.key
Then I created a secret with following command:
kubectl create secret tls ingress-crypto-auth --key mydomain.somenumbers.westeurope.aksapp.io.crt --cert mydomain.somenumbers.westeurope.aksapp.io.crt
Added the secret to my ingress.yaml
files:
ANSWER
Answered 2020-Apr-06 at 09:35It is happen because you are using a self-signed certificate.
A self-signed certificate is a certificate that is not signed by a certificate authority (CA). These certificates are easy to make and do not cost money. However, they do not provide all of the security properties that certificates signed by a CA aim to provide. For instance, when a website owner uses a self-signed certificate to provide HTTPS services, people who visit that website will see a warning in their browser.
To solve this issue you could buy a valid certificate from a trusted CA, or use Let's Encrypt to generate it.
Using cert-manager with Let's Encryptcert-manager builds on top of Kubernetes, introducing certificate authorities and certificates as first-class resource types in the Kubernetes API. This makes it possible to provide 'certificates as a service' to developers working within your Kubernetes cluster.
Let's Encrypt is a non-profit certificate authority run by Internet Security Research Group that provides X.509 certificates for Transport Layer Security encryption at no charge. The certificate is valid for 90 days, during which renewal can take place at any time. I'm supossing you already have NGINX ingress installed and working.
Pre-requisites: - NGINX Ingress installed and working - HELM 3.0 installed and working
cert-manager install
Note: When running on GKE (Google Kubernetes Engine), you may encounter a ‘permission denied’ error when creating some of these resources. This is a nuance of the way GKE handles RBAC and IAM permissions, and as such you should ‘elevate’ your own privileges to that of a ‘cluster-admin’ before running the above command. If you have already run the above command, you should run them again after elevating your permissions:
Follow the official docs to install, or just use HELM 3.0 with the followe command:
QUESTION
I have a docker container running a node express server. The password of the connection with a mysql server is stored in environment variables.
I'm experiencing an issue when upgrading with my helm chart, every time I upgrade the password environment value changes. So obviously the connection with mysql stops working. My helm configuration is the one from azure: https://github.com/Azure/phippyandfriends/
There they don't use secrets, so I just created a secret (this was done way back so I kinda forgot how and what the values were) and in the deployment of my server under env:
ANSWER
Answered 2020-Mar-28 at 12:59you can pass mysql.existingSecret
as a value with the name of your secret and it will use that one.
Community Discussions, Code Snippets contain sources that include Stack Exchange Network
Vulnerabilities
No vulnerabilities reported
Install phippyandfriends
Support
Reuse Trending Solutions
Find, review, and download reusable Libraries, Code Snippets, Cloud APIs from over 650 million Knowledge Items
Find more librariesStay Updated
Subscribe to our newsletter for trending solutions and developer bootcamps
Share this Page