mirror of
https://gitea.com/mcereda/oam.git
synced 2026-02-09 05:44:23 +00:00
chore: placeholders for articles about k8s security and plugins
This commit is contained in:
Michele Cereda
2
.vscode/extensions.json
vendored
2
.vscode/extensions.json
vendored
@@ -1,8 +1,8 @@
|
|||||||
{
|
{
|
||||||
"recommendations": [
|
"recommendations": [
|
||||||
"editorconfig.editorconfig",
|
"editorconfig.editorconfig",
|
||||||
|
"gruntfuggly.todo-tree",
|
||||||
"nhoizey.gremlins",
|
"nhoizey.gremlins",
|
||||||
"oderwat.indent-rainbow",
|
|
||||||
"streetsidesoftware.code-spell-checker",
|
"streetsidesoftware.code-spell-checker",
|
||||||
|
|
||||||
"ianjsikes.md-graph",
|
"ianjsikes.md-graph",
|
||||||
|
|||||||
1
.vscode/settings.json
vendored
1
.vscode/settings.json
vendored
@@ -56,6 +56,7 @@
|
|||||||
"getfacl",
|
"getfacl",
|
||||||
"getfattr",
|
"getfattr",
|
||||||
"gettext",
|
"gettext",
|
||||||
|
"gitops",
|
||||||
"gopass",
|
"gopass",
|
||||||
"gpgconf",
|
"gpgconf",
|
||||||
"gpgtools",
|
"gpgtools",
|
||||||
|
|||||||
1
knowledge base/kubernetes/csi driver.placeholder
Normal file
1
knowledge base/kubernetes/csi driver.placeholder
Normal file
@@ -0,0 +1 @@
|
|||||||
|
https://kubernetes-csi.github.io/docs/
|
||||||
2
knowledge base/kubernetes/external-secrets.placeholder
Normal file
2
knowledge base/kubernetes/external-secrets.placeholder
Normal file
@@ -0,0 +1,2 @@
|
|||||||
|
https://external-secrets.io/main/
|
||||||
|
https://github.com/external-secrets/external-secrets
|
||||||
@@ -6,6 +6,7 @@ Package manager for Kubernetes.
|
|||||||
|
|
||||||
1. [TL;DR](#tldr)
|
1. [TL;DR](#tldr)
|
||||||
1. [Start managing existing resources with a specific helm chart](#start-managing-existing-resources-with-a-specific-helm-chart)
|
1. [Start managing existing resources with a specific helm chart](#start-managing-existing-resources-with-a-specific-helm-chart)
|
||||||
|
1. [Plugins](#plugins)
|
||||||
1. [Further readings](#further-readings)
|
1. [Further readings](#further-readings)
|
||||||
|
|
||||||
## TL;DR
|
## TL;DR
|
||||||
@@ -111,6 +112,10 @@ To achieve this:
|
|||||||
helm upgrade 'app-release-name'
|
helm upgrade 'app-release-name'
|
||||||
```
|
```
|
||||||
|
|
||||||
|
## Plugins
|
||||||
|
|
||||||
|
TODO
|
||||||
|
|
||||||
## Further readings
|
## Further readings
|
||||||
|
|
||||||
- [Website]
|
- [Website]
|
||||||
|
|||||||
3
knowledge base/kubernetes/krew.placeholder
Normal file
3
knowledge base/kubernetes/krew.placeholder
Normal file
@@ -0,0 +1,3 @@
|
|||||||
|
https://krew.sigs.k8s.io/
|
||||||
|
https://github.com/kubernetes-sigs/krew/
|
||||||
|
https://kubernetes.io/docs/tasks/extend-kubectl/kubectl-plugins/
|
||||||
@@ -31,6 +31,7 @@ One possible output format is [JSONpath].
|
|||||||
1. [Create resources](#create-resources)
|
1. [Create resources](#create-resources)
|
||||||
1. [Output formatting](#output-formatting)
|
1. [Output formatting](#output-formatting)
|
||||||
1. [Verbosity and debugging](#verbosity-and-debugging)
|
1. [Verbosity and debugging](#verbosity-and-debugging)
|
||||||
|
1. [Plugins](#plugins)
|
||||||
1. [Further readings](#further-readings)
|
1. [Further readings](#further-readings)
|
||||||
1. [Sources](#sources)
|
1. [Sources](#sources)
|
||||||
|
|
||||||
@@ -587,6 +588,10 @@ Verbosity | Description
|
|||||||
`--v=8` | Display HTTP request contents.
|
`--v=8` | Display HTTP request contents.
|
||||||
`--v=9` | Display HTTP request contents without truncation of contents.
|
`--v=9` | Display HTTP request contents without truncation of contents.
|
||||||
|
|
||||||
|
## Plugins
|
||||||
|
|
||||||
|
TODO
|
||||||
|
|
||||||
## Further readings
|
## Further readings
|
||||||
|
|
||||||
- [Kubernetes]
|
- [Kubernetes]
|
||||||
@@ -596,6 +601,7 @@ Verbosity | Description
|
|||||||
- [Configure access to multiple clusters]
|
- [Configure access to multiple clusters]
|
||||||
- [Configure a Security Context for a Pod or Container]
|
- [Configure a Security Context for a Pod or Container]
|
||||||
- [Enforce Pod Security Standards with Namespace Labels]
|
- [Enforce Pod Security Standards with Namespace Labels]
|
||||||
|
- [Krew]
|
||||||
|
|
||||||
## Sources
|
## Sources
|
||||||
|
|
||||||
@@ -605,6 +611,7 @@ All the references in the [further readings] section, plus the following:
|
|||||||
- [Run a single-instance stateful application]
|
- [Run a single-instance stateful application]
|
||||||
- [Run a replicated stateful application]
|
- [Run a replicated stateful application]
|
||||||
- [Accessing an application on Kubernetes in Docker]
|
- [Accessing an application on Kubernetes in Docker]
|
||||||
|
- [Plugins]
|
||||||
|
|
||||||
<!--
|
<!--
|
||||||
References
|
References
|
||||||
@@ -617,6 +624,7 @@ All the references in the [further readings] section, plus the following:
|
|||||||
[configure a security context for a pod or container]: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/
|
[configure a security context for a pod or container]: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/
|
||||||
[configure access to multiple clusters]: https://kubernetes.io/docs/tasks/access-application-cluster/configure-access-multiple-clusters/
|
[configure access to multiple clusters]: https://kubernetes.io/docs/tasks/access-application-cluster/configure-access-multiple-clusters/
|
||||||
[enforce pod security standards with namespace labels]: https://kubernetes.io/docs/tasks/configure-pod-container/enforce-standards-namespace-labels/
|
[enforce pod security standards with namespace labels]: https://kubernetes.io/docs/tasks/configure-pod-container/enforce-standards-namespace-labels/
|
||||||
|
[plugins]: https://kubernetes.io/docs/tasks/extend-kubectl/kubectl-plugins/
|
||||||
[taints and tolerations]: https://kubernetes.io/docs/concepts/scheduling-eviction/taint-and-toleration/
|
[taints and tolerations]: https://kubernetes.io/docs/concepts/scheduling-eviction/taint-and-toleration/
|
||||||
|
|
||||||
<!-- In-article sections -->
|
<!-- In-article sections -->
|
||||||
@@ -624,6 +632,7 @@ All the references in the [further readings] section, plus the following:
|
|||||||
|
|
||||||
<!-- Knowledge base -->
|
<!-- Knowledge base -->
|
||||||
[jsonpath]: ../jsonpath.md
|
[jsonpath]: ../jsonpath.md
|
||||||
|
[krew]: krew.md
|
||||||
[kubernetes]: README.md
|
[kubernetes]: README.md
|
||||||
|
|
||||||
<!-- Others -->
|
<!-- Others -->
|
||||||
|
|||||||
@@ -15,6 +15,7 @@
|
|||||||
All the references in the [further readings] section, plus the following:
|
All the references in the [further readings] section, plus the following:
|
||||||
|
|
||||||
- [Canals and bridges: using Amsterdam's transit system to secure K8S networks by Cailyn Edwards]
|
- [Canals and bridges: using Amsterdam's transit system to secure K8S networks by Cailyn Edwards]
|
||||||
|
- [100,000 different ways to manage secrets in gitops by Andrew Block, Red Hat]
|
||||||
|
|
||||||
<!--
|
<!--
|
||||||
References
|
References
|
||||||
@@ -28,4 +29,5 @@ All the references in the [further readings] section, plus the following:
|
|||||||
[network policies]: network%20policies.md
|
[network policies]: network%20policies.md
|
||||||
|
|
||||||
<!-- Others -->
|
<!-- Others -->
|
||||||
|
[100,000 different ways to manage secrets in gitops by andrew block, red hat]: https://www.youtube.com/watch?v=FVaaqP7_AJg
|
||||||
[canals and bridges: using amsterdam's transit system to secure k8s networks by cailyn edwards]: https://www.youtube.com/watch?v=N1XvgWXnEik
|
[canals and bridges: using amsterdam's transit system to secure k8s networks by cailyn edwards]: https://www.youtube.com/watch?v=N1XvgWXnEik
|
||||||
|
|||||||
3
knowledge base/sops.placeholder
Normal file
3
knowledge base/sops.placeholder
Normal file
@@ -0,0 +1,3 @@
|
|||||||
|
https://github.com/getsops/sops
|
||||||
|
https://fluxcd.io/flux/guides/mozilla-sops/
|
||||||
|
https://itnext.io/goodbye-sealed-secrets-hello-sops-3ee6a92662bb
|
||||||
Reference in New Issue
Block a user