Consistent user authentication in multi-cloud hosted Kubernetes clusters
05-19, 15:00–15:30 (UTC), Sidebar

As hosted Kubernetes solutions mature, it becomes ever more compelling to operate clusters across multiple cloud providers. A general point of friction can often be the differences in how you are able to authenticate to those clusters. Cloud providers tend to integrate their own proprietary solutions and hosted control planes lack the flexibility to use authentication providers and audit sinks.


During this talk I will show how a reverse proxy in front of the Kubernetes API can implement uniform OIDC authentication across hosted Kubernetes solutions.

Christian can rely on his experiences from working as a Jack of all trades Linux sysadmin for 15+ years. This hands-on practices is backed by his academic work around security practices. Lately he’s focused on providing modern DevOps environments through the heavy use of containers.
As soon as he is away from his laptop he enjoys beers and pork dishes (due to his Bavarian roots), visiting if not organising gigs or music festivals and keeping fit with swimming, hiking, skiing and lately playing field hockey.

Previous talks:
Puppetconf 2017: From Roller Coasters to Meerkats- 3 Generations of Production Kubernetes Clusters
https://www.youtube.com/watch?v=ThbcHUj70EA
Kubecon EU 2018 / Containerdays 2018: Why running kubelet on your vacuum robot is (not) a good idea
https://www.youtube.com/watch?v=ea0UzDpk6PE