pinniped
dex
pinniped | dex | |
---|---|---|
5 | 1 | |
512 | 7,107 | |
1.6% | - | |
9.6 | 10.0 | |
6 days ago | almost 2 years ago | |
Go | Go | |
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
pinniped
-
infra alternatives - paralus and pinniped
3 projects | 7 Apr 2023
-
How to authenticate non azure managed cluster via azure ad?
Otherwise you may need to look at the 3rd party alternatives like Pinniped - https://pinniped.dev/. This is also something I found to be recommended by AKS team if you need different OIDC provider than Azure AD.
-
Why are there so many OIDC SSO options for Kubernetes?
pinniped
- Authentication options without access to kube-apiserver config?
- Pinniped
dex
-
10 Essentials for Kubernetes Access Control
Dex is another open-source tool for SSO on the Kubernetes cluster, developed from CoreOS. Dex supports LDAP, GitHub, SAML 2.0, GitLab, OAuth 2.0, Google, LinkedIn, Microsoft, Bitbucket Cloud, OpenShift, Atlassian Crowd, Gitea, and OpenStack Keystone for SSO. You can control token generation after login using Dex and force the user to re-authenticate if needed. Dex also provides strong documentation to implement various connectors.
What are some alternatives?
dex - OpenID Connect (OIDC) identity and OAuth 2.0 provider with pluggable connectors
obligator - Simple and opinionated OpenID Connect server designed for self-hosters
ldapnomnom - Quietly and anonymously bruteforce Active Directory usernames at insane speeds from Domain Controllers by (ab)using LDAP Ping requests (cLDAP)
kubernetes - Production-Grade Container Scheduling and Management
infra - Infra provides authentication and access management to servers and Kubernetes clusters.
kube-oidc-proxy - Reverse proxy to authenticate to managed Kubernetes API servers via OIDC.
kubelogin - kubectl plugin for Kubernetes OpenID Connect authentication (kubectl oidc-login)
idm - LibreGraph Identity Management
paralus - All-in-one Kubernetes access manager. User-level credentials, RBAC, SSO, audit logs.
authentik - The authentication glue you need.