mirror of https://github.com/pomerium/pomerium.git synced 2025-05-01 19:36:32 +02:00

deployment: update helm and add quick-start docs (#75 )

- adds quick-start documentation for using helm
- update helm deployment charts to match outstanding official charts repo.

2019-03-29 08:35:31 -07:00

2.9 KiB

Raw Blame History

Helm

This quickstart will show you how to deploy Pomerium with Helm. For the purpose of this guide, we will be using Google's Kubernetes Engine. However, there are many other ways to work with Kubernetes:

Google Kubernetes Engine (GKE)
Azure Kubernetes Service
Amazon Elastic Kubernetes Service (Amazon EKS)
OpenShift Kubernetes
Or locally, with minikube

Most of the following steps should be very similar using any other provider, but may require additional tweaks.

Prerequisites

A Google Cloud Account
A configured identity provider
Install kubectl
Install the Google Cloud SDK
Install helm

Download

Retrieve the latest copy of pomerium's source-code by cloning the repository.

git clone https://github.com/pomerium/pomerium.git $HOME/pomerium

Configure

Edit the the install command in the helm_gke.sh script to match your identity provider settings.

Generate a wild-card TLS certificate. If you don't have one handy, the included script generates one from LetsEncrypt.

Run

Run ./scripts/helm_gke.sh which will:

Provision a new cluster
Create authenticate, authorize, and proxy deployments.
Provision and apply authenticate, authorize, and proxy services.
Configure an ingress, Google's default load balancer.

sh ./scripts/helm_gke.sh

You should see roughly the following in your terminal. Note, provisioning does take a few minutes.

[](https://asciinema.org/a/223821

And if you check out Google's Kubernetes Engine dashboard you'll see something like:

Navigate

Open a browser and navigate to httpbin.corp.example.com.

You should see something like the following in your browser.

2.9 KiB Raw Blame History