mariadb-podman-socket-activation
obligator
mariadb-podman-socket-activation | obligator | |
---|---|---|
5 | 7 | |
15 | 615 | |
- | 2.0% | |
2.4 | 9.0 | |
10 months ago | 7 days ago | |
Go | ||
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
mariadb-podman-socket-activation
-
Show HN: Obligator – An OpenID Connect server for self-hosters
https://github.com/eriksjolund/mariadb-podman-socket-activat...
-
Podman v4.0 has been released
In addition to that Podman supports socket activation that passes the socket to the container. Interestingly, this opens up the possibility to run a network server (e.g. a web server) with --network=none (i.e.podman run --network=none ...) in case the server process is happy with only communicating over the TCP socket it was passed. This increases security. Some references: https://github.com/containers/podman/discussions/13390 https://github.com/eriksjolund/mariadb-podman-socket-activation
-
Podman 4.0.0
Support for socket activation
Podman will pass on the socket-activated socket to the container.
I wrote a small example demo for setting up socket activation with systemd, Podman, and a MariaDB container:
https://github.com/eriksjolund/mariadb-podman-socket-activat...
-
Dependencies within a pod: best way to wait before starting a container
I wrote a small example demo for MariaDB https://github.com/eriksjolund/mariadb-podman-socket-activation/
- Podman v4.0.0 released
obligator
-
JIT WireGuard
The deployment experience is awesome, but for me[0] the killer feature of Fly.io is their Anycast network and features such as FLY_REPLAY and LiteFS that make clusering a breeze[1].
[0]: using them for https://lastlogin.io
[1]: Here's all the fly-specific code necessary to run LastLogin in a globally distributed way: https://github.com/lastlogin-io/obligator/blob/37f75cc861f1b...
-
Keycloak SSO with Docker Compose and Nginx
I use obligator with ephemeral storage, no db, 100% code driven setup.
In my opinion this is the simplist option.
https://github.com/lastlogin-io/obligator
-
Google OAuth is broken (sort of)
See the table here: https://github.com/lastlogin-io/obligator#comparison-is-the-...
- FLaNK Stack Weekly 16 October 2023
-
Show HN: Obligator – An OpenID Connect server for self-hosters
Sorry, this is indeed not very clear. Others already answered well, but if you look at the example[0] config you can see how you would use your own instance of obligator as a client to the instance running at lastlogin.io. This is a bit meta, but applies equally to any client application.
[0]: https://github.com/anderspitman/obligator#running-it
What are some alternatives?
podman-desktop-companion - Podman desktop companion
TheIdServer - OpenID/Connect, OAuth2, WS-Federation and SAML 2.0 server based on Duende IdentityServer and ITFoxtec Identity SAML 2.0 with its admin UI
sonarr - Sonarr TV manager in a Rocky Linux container
OpenID - OpenID Certified™ OpenID Connect Relying Party implementation for Apache HTTP Server 2.x
cri-dockerd - dockerd as a compliant Container Runtime Interface for Kubernetes
podman-nginx-socket-activation - Demo of how to run socket-activated nginx with Podman
gentoo-project-gnome-without-systemd - GNOME Without Systemd
node-oidc-provider - OpenID Certified™ OAuth 2.0 Authorization Server implementation for Node.js
podman - Podman: A tool for managing OCI containers and pods.
dex - OpenID Connect (OIDC) identity and OAuth 2.0 provider with pluggable connectors [Moved to: https://github.com/dexidp/dex]
podman-compose - a script to run docker-compose.yml using podman
traefik-forward-auth - Minimal forward authentication service that provides Google/OpenID oauth based login and authentication for the traefik reverse proxy