Kubernetes

Kubernetes is an open-source container orchestration system for automating software deployment, scaling, and management.

Example Usage

k8s-roles-integration.tf

resource "apono_integration" "k8s-roles-integration" {
  name                     = "Kubernetes"
  type                     = "k8s-roles"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["k8s-cluster"]
  metadata = {
    cluster_name = "<kubeconfig Cluster Name>"
    kubeconfig_api_server_url = "<kubeconfig Server URL>"
    server_url = "<Server URL>"
    certificate_authority = "<Certificate Authority>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
  }
  kubernetes_secret = {
    name      = "name_template_value"
    namespace = "namespace_template_value"
  }
}

k8s-roles-integration.tf

resource "apono_resource_integration" "k8s-roles-integration" {
  name                     = "Kubernetes"
  type                     = "k8s-roles"
  connector_id             = "apono-connector-id"
  connected_resource_types = ["k8s-cluster"]
  integration_config = {
    cluster_name = "<kubeconfig Cluster Name>"
    kubeconfig_api_server_url = "<kubeconfig Server URL>"
    server_url = "<Server URL>"
    certificate_authority = "<Certificate Authority>"
    credentials_rotation_period_in_days = "<Credentials rotation period (in days)>"
    credentials_cleanup_period_in_days = "<User cleanup after access is revoked (in days)>"
  }
  secret_store_config = {
    kubernetes = {
      name      = "name_template_value"
      namespace = "namespace_template_value"
    }
}

Schema

type k8s-roles
connected_resource_types List of resource types to sync.

Available resource types you can use

k8s-cluster
k8s-namespace
k8s-secret
k8s-configmap
k8s-deployment
k8s-statefulset
k8s-ingress
k8s-cronjob
k8s-job

Integration Config

cluster_name (Required | String) kubeconfig Cluster Name
kubeconfig_api_server_url (Required | String) kubeconfig Server URL
server_url (Optional | String) Server URL
certificate_authority (Optional | String) Certificate Authority
credentials_rotation_period_in_days (Optional | String) Credentials rotation period (in days)
credentials_cleanup_period_in_days (Optional | String) User cleanup after access is revoked (in days)

PreviousKubernetes Proxy NextLDAP Group

Last updated 4 hours ago

Was this helpful?