pomerium/docs/docs/quick-start/kubernetes.md

title	lang	meta
Kubernetes	en-US	name content keywords pomerium identity-access-proxy oidc kubernetes reverse-proxy

Pomerium using Kubernetes

This quickstart will cover how to deploy Pomerium with Kubernetes.

Prerequisites

• A configured identity provider
• TLS certificates
• A Google Cloud Account
• kubectl
• Google Cloud SDK

Download

Retrieve the latest copy of pomerium's source-code by cloning the repository.

git clone https://github.com/pomerium/pomerium.git $HOME/pomerium
cd $HOME/pomerium/docs/configuration/examples/kubernetes

Configure

Edit ./kubernetes_gke.sh making sure to change the identity provider secret value to match your identity provider and TLS certificates settings.

<<<@/docs/configuration/examples/kubernetes/kubernetes_gke.sh

Run

Run ./kubernetes_gke.sh which will:

1. Provision a new cluster.
2. Create authenticate, authorize, and proxy deployments.
3. Provision and apply authenticate, authorize, and proxy services.
4. Configure an ingress load balancer.

cd $HOME/pomerium/docs/configuration/examples/kubernetes
sh ./kubernetes_gke.sh

You should see roughly the following in your terminal. Note, provisioning does take a few minutes.

And if you check out Google's Kubernetes Engine dashboard you'll see something like:

Navigate

Open a browser and navigate to httpbin.your.domain.example.

You can also navigate to the special pomerium endpoint httpbin.your.domain.example/.pomerium/ to see your current user details.