haproxy-ingress
grpc-mtls-example
haproxy-ingress | grpc-mtls-example | |
---|---|---|
6 | 1 | |
1,006 | 36 | |
- | - | |
8.4 | 4.9 | |
3 days ago | 18 days ago | |
Go | Go | |
Apache License 2.0 | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
haproxy-ingress
-
So you want to deploy mTLS
This was all running on Kubernetes, coupled with Google Cloud SQL for PostgreSQL and an HAProxy deployment managed by an ingress controller (jcmoraisjr/haproxy-ingress with a modified config file template). Branch or test deployments were a little different: the database was deployed on Kubernetes directly, to make it simple to deploy additional environments without spinning up resources outside of Kubernetes.
- no service with name ingress-controller/ingress-default-backend found
-
Back to basics: accessing Kubernetes pods
It's implementation-dependent and implementations offer different features, e.g., Nginx, Traefik, HAProxy, etc.
-
Kubernetes Ingress: Nginx Ingress Edition
HAProxy Ingress is an ingress controller for HAProxy.
- which ingress controller do you prefer
-
In a HA setup, why do I need a load balancer for the kube-apiserver if can just ssh the next kube-apiserver if one was down?
Which k8s-HAProxy do you use, this https://github.com/haproxytech/kubernetes-ingress or this https://github.com/jcmoraisjr/haproxy-ingress or voyager?
grpc-mtls-example
-
So you want to deploy mTLS
We had to configure servers in Go (gRPC), Python (Flask), and node.js (GraphQL). There are plenty of guides and docs on how to do this, if you’re curious :-) For the sake of brevity, I’ll only give an example for Go (gRPC) to illustrate what this entails. Here’s the heart of it:
What are some alternatives?
ingress-nginx - Ingress-NGINX Controller for Kubernetes
certify - :lock: Create private CA and Issue Certificates without hassle
kubernetes-ingress - HAProxy Kubernetes Ingress Controller
kubernetes-ingress-controller - :gorilla: Kong for Kubernetes: The official Ingress Controller for Kubernetes.
skipper - An HTTP router and reverse proxy for service composition, including use cases like Kubernetes Ingress
tyk-operator - Tyk Operator for Kubernetes
metallb - A network load-balancer implementation for Kubernetes using standard routing protocols
traefik - The Cloud Native Application Proxy [Moved to: https://github.com/traefik/traefik]
containerd - An open and reliable container runtime
kubernetes-ingress - NGINX and NGINX Plus Ingress Controllers for Kubernetes
ingress-bfe - BFE Ingress Controller for Kubernetes
easegress - A Cloud Native traffic orchestration system