helm VS oauth2-proxy

Helm is an open-source platform that was created by DeisLabs. Helm is used as the package manager for Kubernetes. Many developers use Helm to install any Kubernetes application to the Kubernetes Cluster. Helm automates the process of deploying a Kubernetes application to the Kubernetes Cluster. Helms bundles a Kubernetes application into a single package known as a Helm chart. Developers will then take this Helm chart and install them on the Kubernetes Cluster. You can check this article on Sweet Code about deploying Helm Chart to Kubernetes.

There's no real reason, just manpower. At the end of the day, all these charts are based on a superset of functionality from Helm Charts. There are probably some variations in between the repos that would require some adjustment, so if anybody wants to help copy things over, as we say "Pull Requests Welcome" :)

Helm Chart is an open-source project owned by Kubernetes. It is Package Manager, Template Engine and Release engine for Kubernetes.

And I've found the issue https://github.com/helm/helm/issues/4256

If you want to compare Org with something on Github, a better comparison would be, say, helm - undoubtly popular package developed on Github. https://github.com/helm/helm/graphs/contributors Now, look at https://github.com/yantar92/org/graphs/contributors Again, I cannot help but notice that Org is more actively developed.

To take our journey one step further, we need the help of a very important tool in the K8s world: Helm. From their website: "Helm helps you manage Kubernetes applications — Helm Charts helps you define, install, and upgrade even the most complex Kubernetes application." Therefore, we need a "helm chart" to improve our deployment.

There are several ways how you can deploy a database in the cluster (you can also use a remote database hosted in the cloud, but we want to make this practice more challenging so we can touch more concepts regarding Kubernetes). You can manually write all the manifests (deployment, service, secrets, volumes, etc) or you can use **Helm **to deploy the database and many other services. I highly recommend using helm charts (verified ones) to deploy this kind of service instead of writing these by yourself.

Kubernetes and Helm for deployment

What do you mean by stored? The notebooks are deployed on kubernetes using Helm https://helm.sh (1 notebook = 1 Helm release), their configs are stored as Secrets on Kubernetes. If you mean data inside the notebook, one can enable persistence (mount a PersistenVolume into the notebook) (via the Helm values, see https://github.com/machine424/notebook-on-kube#create-connect-to-and-delete-a-notebook).

Like auth basic? Mate, its 2023 get that RestAPI endpoint behind an OAuth proxy. github.com/oauth2-proxy/oauth2-proxy is a good one on a budget or use some cloud provider's ApiGateway and IAM services.

A final option would be oauth2-proxy which I also tried out in the past. It was pretty easy to get going, but also quite barebones. However maybe that would be fine for my usecase. Still something to investigate.

I use it in combination with oauth2-proxy, which sits in front of my network and the various services I host. https://github.com/oauth2-proxy/oauth2-proxy

Under the hood Authentik just uses https://github.com/oauth2-proxy/oauth2-proxy. The preconfigured proxy is convenient but if you already have a SSO provider you don't need to switch.

I recommend https://github.com/oauth2-proxy/oauth2-proxy

Have a look at oauth2-proxy. I wanted to do something similar - I wanted to access the various services running on my home network over the internet, but keeping them secure.

I was trying to piece together oauth2-proxy with caddy without any real documentation to follow. It doesn't exist.

I see OAuth2-Proxy on the other side of the spectrum – it's just a proxy that is flexible around supporting various Identity Providers but lacking customisation of extra authentication checks and adding custom claims to the issued access token. I see it similar to Keycloack mentioned in part 3.4 of the first article.