An earlier port hard coded the IP address and port used for MariaDB connections. I want to pull these out so I can pass them in on the command line when I create the client.
Continue readingInjecting Parameters into container image
Reply
Category Archives: Kubernetes
Let’s Buildah Keystoneconfig
Buildah is a valuable tool in the container ecosystem. As an effort to get more familiar with it, and to finally get my hand-rolled version of Keystone to deploy on Kubernetes, I decided to work through building a couple of Keystone based containers with Buildah.
Continue readingFrom WebUI to CLI: OCP Templates
Last time I showed how to recreate a WebUI-generated MariaDB deployment from the command line. But how should you really generate it in the first place? Let’s walk through:
Continue readingFrom WebUI to CLI: MariaDB in OpenShift
Web base user interfaces are great at walking a user through tasks they do not know how to perform yet. In my case, I want to launch a MariaDB instance on OpenShift. Eventually, I want to do this from the command line. Here are my steps.
Running the MariaDB Client on OpenShift
I set up a MariaDB server and wanted to test it out. There are many docs out there about how to set up the client. This is what worked for me.
First, find out the internal IP address of the Database server pod:
oc get pod -l name=mariadb -o json | jq -r '. | .items[0] | .status | .podIP ' |
In my case, that returned 10.131.0.81. Which lead to this command:
kubectl run -it --rm --image=mariadb:latest --restart=Never mariadb-client -- mysql keystone -h 10.131.0.81 --user keystone -pkeystone |
Red Hat IdM as an LDAP Identity Provider in OpenShift Container Platform 4
For my OpenShift Demo, I want to use a Red Hat IdM server as the identity provider. It took a little trial and error to get the mechanism to work right.
Continue readingSuccessful OpenShift 4.1 Disconnected install
This one is going to be a little light on details, as we are still working through it, but I’d just like to share what I’ve been working on the past couple weeks. Note that this is for a proof-of-concept cluster, and is not for production.
Continue readingComparing Keystone and Istio RBAC
To continue with my previous investigation to Istio, and to continue the comparison with the comparable parts of OpenStack, I want to dig deeper into how Istio performs
RBAC. Specifically, I would love to answer the question: could Istio be used to perform the Role check?
Comparing Istio and Keystone Middleware
One way to learn a new technology is to compare it to what you already know. I’ve heard a lot about Istio, and I don’t really grok it yet, so this post is my attempt to get the ideas solid in my own head, and to spur conversations out there.
SE Linux for CentOS Part 3
After the previous two days debugging, Simo Sorce suggested that I need to tell the OS to show all AVCs, some are hidden by default.