https://github.com/andifalk/secure-development-on-kubernetes

Slides and Demos for "Secure Development on Kubernetes" talk
https://github.com/andifalk/secure-development-on-kubernetes

cloud container docker kms kubernetes kubernetes-secrets spring-boot spring-security

Last synced: about 1 year ago
JSON representation

Slides and Demos for "Secure Development on Kubernetes" talk

• Host: GitHub
• URL: https://github.com/andifalk/secure-development-on-kubernetes
• Owner: andifalk
• License: apache-2.0
• Created: 2019-06-26T19:15:28.000Z (almost 7 years ago)
• Default Branch: master
• Last Pushed: 2024-11-11T20:29:30.000Z (over 1 year ago)
• Last Synced: 2025-03-25T23:13:52.453Z (about 1 year ago)
• Topics: cloud, container, docker, kms, kubernetes, kubernetes-secrets, spring-boot, spring-security
• Language: Java
• Homepage:
• Size: 18.7 MB
• Stars: 22
• Watchers: 2
• Forks: 7
• Open Issues: 1
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

          
![License](https://img.shields.io/badge/License-Apache%20License%202.0-brightgreen.svg)

![Java CI](https://github.com/andifalk/secure-development-on-kubernetes/workflows/Java%20CI/badge.svg)

[![Release](https://img.shields.io/github/release/andifalk/secure-development-on-kubernetes.svg?style=flat)](https://github.com/andifalk/secure-development-on-kubernetes/releases)

# Secure Development on Kubernetes

This repository contains all the associated code labs for the deep dive session on _Secure Development on Kubernetes_.

## Table of Contents

* [Requirements and Setup](#requirements-and-setup)

  * [Setup Google GKE](gke-provisioning/README.md)

* [K8s Authorization (RBAC)](#kubernetes-authorization-with-rbac)

* [Helpful tools for K8s Security](#helpful-tools-for-k8s-security)  

* [Labs](#labs)

  * [Iteration 1: Application Security](#iteration-1--application-security)  

  * [Iteration 2: Container Security](#iteration-2--container-security)  

  * [Iteration 3: Kubernetes Security](#iteration-3--kubernetes-security)

  

## Requirements and Setup

Please check the [Requirements and Setup](setup/README.md) section first before looking into the [Labs](#labs).

## Helpful Tools for K8s Security

For helpful tools see [here](tools/README.md).

## Kubernetes Authorization with RBAC

For an introduction into Kubernetes RBAC see [here](rbac/README.md)

## Labs

Please follow the [corresponding tutorial](https://andifalk.gitbook.io/secure-kubernetes-development/) for the labs.

### Introduction

* [Linux & Container Basics](step0-linux-container-basics)

#### Iteration 1: Application Security

* [Hello Spring Boot](step1-hello-spring-boot)

#### Iteration 2: Container Security

* [Root Container](step2-hello-root)

* [Rootless Container](step3-hello-rootless)

* [Rootless Container with JIB](step4-hello-rootless-jib)

* [Rootless Container with Paketo](step5-hello-paketo)

#### Iteration 3: Kubernetes Security

* [Initial Unsafe Kubernetes Deployment](step6-initial-k8s-deploy)

* [Safe Kubernetes Deployment (Pod Security Context)](step7-pod-security-context)

* [Safe Kubernetes Deployment (Pod Security Admission)](step8-pod-security-admission)

* [Safe Kubernetes Deployment (Open Policy Agent)](step9-open-policy-agent)

## Feedback

Any feedback on this hands-on workshop is highly appreciated.

Please either email _andreas.falk(at)novatec-gmbh.de_ or contact me via Twitter (_@andifalk_).

## License

Apache 2.0 licensed

[1]:http://www.apache.org/licenses/LICENSE-2.0.txt