Dex
Dex is an identity service that uses OpenID Connect to drive authentication for other apps.
You can use Dex for example to provide OIDC authentication using users from an LDAP backend.
âšī¸ Learn more about Dex in the official documentation.
Requirementsâ
- Kubernetes <=
1.20.0 - Kustomize >=
v3
Image repository and tagâ
- Dex repository: https://github.com/dexidp/dex
- Dex container image:
registry.sighup.io/fury/dexidp/dex:v2.20.0
Configurationâ
Dex is deployed with the following default configuration:
- Replica number:
1 - Listens on port
5556 - Resource limits are
250mfor CPU and200Mifor memory
Dex is configured using a config.yml file. You can get a sample file from the official docs or check out the provided LDAP-based example configuration file
Once you have written the configuration file for your environment, create a Kubernetes secret named dex in the kube-system namespace with the contents of the file under the config.yml key.
âšī¸ We recommend you do this using Kustomize, either with a
secretGeneratoror as a resource.
The dex secret will then be mounted by the deployment as a volume in the right path.
Deploymentâ
Once you have created the configuration file, you can deploy Dex by running the following command in the folder of this package:
kustomize build | kubectl apply -f -