LogoLogo
Metadata for Integration Config
Metadata for Integration Config
  • INTEGRATION METADATA
    • Amazon Account
    • AWS EC2 SSH
    • Elastic Kubernetes Service (EKS)
    • AWS Lambda Custom Integration
    • Amazon Organization
    • AWS RDS MySQL
    • AWS RDS PostgreSQL
    • Amazon RDS
    • Entra ID (Azure AD) Groups
    • Azure Kubernetes Service (AKS)
    • Azure Management Group
    • Azure MySQL
    • Azure PostgreSQL
    • Azure Subscription
    • Azure VM SSH
    • Cloud Function Custom Integration
    • F5 Network
    • Google AlloyDB
    • Google BigQuery
    • Google Cloud SQL - MySQL
    • Google Cloud SQL - PostgreSQL
    • Google Kubernetes Engine (GKE)
    • Google Organization
    • Google Project
    • Github
    • JumpCloud
    • Kubernetes Proxy
    • Kubernetes
    • LDAP Group
    • MariaDB
    • Mongo Atlas Portal
    • MongoDB Atlas
    • MongoDB
    • Microsoft SQL Server
    • MySQL
    • Okta Group
    • OneLogin Group
    • 1Password
    • OpenVPN
    • Oracle Database
    • PostgreSQL
    • RabbitMQ
    • Rancher
    • RDP
    • Redis Cloud (Redislabs)
    • Amazon Redshift
    • Snowflake
    • SSH
    • Vertica Database
    • Web App
    • Windows Domain Controller
Powered by GitBook
On this page
  • Example Usage
  • Schema
  • Integration Config

Was this helpful?

Export as PDF
  1. INTEGRATION METADATA

Kubernetes Proxy

Allow proxy using kubernetes port forward to socat tunnel

Example Usage

k8s-port-forward-proxy-integration.tf
resource "apono_integration" "k8s-port-forward-proxy-integration" {
  name                     = "Kubernetes Proxy"
  type                     = "k8s-port-forward-proxy"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["k8s-port-forward-proxy"]
  metadata = {
    target_host = "<Target Host>"
    target_port = "<Target Port>"
    local_port = "<Local Port>"
    proxy_id = "<Proxy ID>"
    server_url = "<Server URL>"
    certificate_authority = "<Certificate Authority>"
    cluster_name = "<kubeconfig Cluster Name>"
    kubeconfig_api_server_url = "<kubeconfig Server URL>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
  }
  aws_secret = {
    region    = "aws_region_template_value"
    secret_id = "aws_secret_id_template_value"
  }
}
k8s-port-forward-proxy-integration.tf
resource "apono_resource_integration" "k8s-port-forward-proxy-integration" {
  name                     = "Kubernetes Proxy"
  type                     = "k8s-port-forward-proxy"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["k8s-port-forward-proxy"]
  integration_config = {
    target_host = "<Target Host>"
    target_port = "<Target Port>"
    local_port = "<Local Port>"
    proxy_id = "<Proxy ID>"
    server_url = "<Server URL>"
    certificate_authority = "<Certificate Authority>"
    cluster_name = "<kubeconfig Cluster Name>"
    kubeconfig_api_server_url = "<kubeconfig Server URL>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
  }
  secret_store_config = {
    aws = {
      region    = "aws_region_template_value"
      secret_id = "aws_secret_id_template_value"
    }
}
k8s-port-forward-proxy-integration.json
{
    "k8s-port-forward-proxy-integration": {
        "name": "Kubernetes Proxy",
        "type": "k8s-port-forward-proxy",
        "connector_id": "apono-connector-id",
        "connected_resource_types": [
            "k8s-port-forward-proxy"
        ],
        "integration_config": {
            "target_host": "<Target Host>",
            "target_port": "<Target Port>",
            "local_port": "<Local Port>",
            "proxy_id": "<Proxy ID>",
            "server_url": "<Server URL>",
            "certificate_authority": "<Certificate Authority>",
            "cluster_name": "<kubeconfig Cluster Name>",
            "kubeconfig_api_server_url": "<kubeconfig Server URL>",
            "credentials_rotation_period_in_days": "<Credentials rotation period (in days)>",
            "credentials_cleanup_period_in_days": "<User cleanup after access is revoked (in days)>",
        },
	"secret_store_config": {
    	    "region": "aws_region_template_value",
    	    "secret_id": "aws_secret_id_template_value"
  	    }
    }
}

Schema

  • type k8s-port-forward-proxy

  • connected_resource_types List of resource types to sync.

Available resource types you can use

  • k8s-port-forward-proxy

Integration Config

  • target_host (Required | String) Target Host

  • target_port (Required | String) Target Port

  • local_port (Required | String) Local Port

  • proxy_id (Required | String) Proxy ID

  • server_url (Optional | String) Server URL

  • certificate_authority (Optional | String) Certificate Authority

  • cluster_name (Required | String) kubeconfig Cluster Name

  • kubeconfig_api_server_url (Optional | String) kubeconfig Server URL

  • credentials_rotation_period_in_days (Optional | String) Credentials rotation period (in days)

  • credentials_cleanup_period_in_days (Optional | String) User cleanup after access is revoked (in days)

PreviousJumpCloudNextKubernetes

Last updated 7 days ago

Was this helpful?