Kubernetes Proxy

Allow proxy using kubernetes port forward to socat tunnel

Example Usage

k8s-port-forward-proxy-integration.tf

resource "apono_integration" "k8s-port-forward-proxy-integration" {
  name                     = "Kubernetes Proxy"
  type                     = "k8s-port-forward-proxy"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["k8s-port-forward-proxy"]
  metadata = {
    target_host = "<Target Host>"
    target_port = "<Target Port>"
    local_port = "<Local Port>"
    proxy_id = "<Proxy ID>"
    server_url = "<Server URL>"
    certificate_authority = "<Certificate Authority>"
    cluster_name = "<kubeconfig Cluster Name>"
    kubeconfig_api_server_url = "<kubeconfig Server URL>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
  }
  aws_secret = {
    region    = "aws_region_template_value"
    secret_id = "aws_secret_id_template_value"
  }
}

k8s-port-forward-proxy-integration.tf

resource "apono_resource_integration" "k8s-port-forward-proxy-integration" {
  name                     = "Kubernetes Proxy"
  type                     = "k8s-port-forward-proxy"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["k8s-port-forward-proxy"]
  integration_config = {
    target_host = "<Target Host>"
    target_port = "<Target Port>"
    local_port = "<Local Port>"
    proxy_id = "<Proxy ID>"
    server_url = "<Server URL>"
    certificate_authority = "<Certificate Authority>"
    cluster_name = "<kubeconfig Cluster Name>"
    kubeconfig_api_server_url = "<kubeconfig Server URL>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
  }
  secret_store_config = {
    aws = {
      region    = "aws_region_template_value"
      secret_id = "aws_secret_id_template_value"
    }
}

Schema

type k8s-port-forward-proxy
connected_resource_types List of resource types to sync.

Available resource types you can use

k8s-port-forward-proxy

Integration Config

target_host (Required | String) Target Host
target_port (Required | String) Target Port
local_port (Required | String) Local Port
proxy_id (Required | String) Proxy ID
server_url (Optional | String) Server URL
certificate_authority (Optional | String) Certificate Authority
cluster_name (Required | String) kubeconfig Cluster Name
kubeconfig_api_server_url (Optional | String) kubeconfig Server URL
credentials_rotation_period_in_days (Optional | String) Credentials rotation period (in days)
credentials_cleanup_period_in_days (Optional | String) User cleanup after access is revoked (in days)

PreviousJumpCloud NextKubernetes

Last updated 2 hours ago

Was this helpful?

Example Usage

k8s-port-forward-proxy-integration.tf

resource "apono_integration" "k8s-port-forward-proxy-integration" {
  name                     = "Kubernetes Proxy"
  type                     = "k8s-port-forward-proxy"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["k8s-port-forward-proxy"]
  metadata = {
    target_host = "<Target Host>"
    target_port = "<Target Port>"
    local_port = "<Local Port>"
    proxy_id = "<Proxy ID>"
    server_url = "<Server URL>"
    certificate_authority = "<Certificate Authority>"
    cluster_name = "<kubeconfig Cluster Name>"
    kubeconfig_api_server_url = "<kubeconfig Server URL>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
  }
  aws_secret = {
    region    = "aws_region_template_value"
    secret_id = "aws_secret_id_template_value"
  }
}

k8s-port-forward-proxy-integration.tf

resource "apono_resource_integration" "k8s-port-forward-proxy-integration" {
  name                     = "Kubernetes Proxy"
  type                     = "k8s-port-forward-proxy"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["k8s-port-forward-proxy"]
  integration_config = {
    target_host = "<Target Host>"
    target_port = "<Target Port>"
    local_port = "<Local Port>"
    proxy_id = "<Proxy ID>"
    server_url = "<Server URL>"
    certificate_authority = "<Certificate Authority>"
    cluster_name = "<kubeconfig Cluster Name>"
    kubeconfig_api_server_url = "<kubeconfig Server URL>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
  }
  secret_store_config = {
    aws = {
      region    = "aws_region_template_value"
      secret_id = "aws_secret_id_template_value"
    }
}

Schema

type k8s-port-forward-proxy

connected_resource_types List of resource types to sync.

Available resource types you can use

k8s-port-forward-proxy

Integration Config

target_host (Required | String) Target Host

target_port (Required | String) Target Port

local_port (Required | String) Local Port

proxy_id (Required | String) Proxy ID

server_url (Optional | String) Server URL

certificate_authority (Optional | String) Certificate Authority

cluster_name (Required | String) kubeconfig Cluster Name

kubeconfig_api_server_url (Optional | String) kubeconfig Server URL

credentials_rotation_period_in_days (Optional | String) Credentials rotation period (in days)

credentials_cleanup_period_in_days (Optional | String) User cleanup after access is revoked (in days)