##About Rootconf Hyderabad:
Rootconf Hyderabad is a platform for:
- DevOps engineers
- Site Reliability Engineers (SRE)
- ML and data engineers
- Security and DevSecOps professionals
- Software engineers
to discuss real-world problems around:
- Site Reliability Engineering (SRE)
- Data and AI engineering
- Distributed systems -- observerability, microservices
- Implementing Infrastructure as Code
Speakers from Flipkart, Hotstar, Intuit, GO-JEK, MadStreetDen and Trusting Social will share their experiences with the above challenges.
##Event venue:
Rootconf Hyderabad will be held at T-Hub, IIIT-Hyderabad Campus, Gachibowli, Hyderabad, Telangana - 500032
##Contact information:
For bulk ticket purchases,sponsorship and other inquiries, contact sales@hasgeek.com or call 7676332020
#Sponsors:
Click here to view the Sponsorship Deck.
Rootconf Hyderabad 2019 sponsors:
#Platinum Sponsor
 |
 |
#Bronze Sponsors
 |
 |
 |
For information about the event, tickets (bulk discounts automatically apply on 5+ and 10+ tickets) and speaking, call Rootconf on 7676332020 or write to info@hasgeek.com.
AS
Adheip Singh
@adheipsingh
Solving Authentication and Authorisation on kubernetes using Adapters in Istio
Submitted Sep 18, 2019
Category:
Security
Section:
Full talk (40 mins)
Service A wants to talk to Service B running in a kubernetes cluster.
- Is Service A authenticated?
- if yes, is it authorised ?
- if yes, then how is B validating A.
- Is B caching the Request
- Is service A making a call from an application context or user context.
- Want all services to have end to end TLS.
Here you see now you end up in tons of permuations and combinations with this usecase. How to solve this when you have hundreds of services running in a kubenretes cluster. Do we need to write an authorisation server or In case i am using Octa or Auth0, will i need to make code changes in my application? So these are issues we shall address using Istio adapters.
Outline
Mixer is a component in Istio which helps us programatically extend the istio layer. With Mixer adapters we are able to integrate third party tools into Istio and enforce these policies. At SRIJAN we solved this issue using apigee adapter, and using istio native methods such as policy. Also we were able to achieve end to end TLS encryption using MTLS. How to write adapters in istio ? How to integrate APIGEE with Istio and deliver improved API management on your services. These are the topics to be addressed and focused upon.
Requirements
Kubernetes Knowledge, ServiceMesh knowledge preffered
Speaker bio
Adheip Singh, Senior DevOps at SRIJAN. Have been a distributed system enthusiast and OpenSource Lover. A GoLang Developer at heart currently handling SRIJAN’s OpenSource initiatives which include Kubernetes and ServiceMesh.
{{ gettext('Login to leave a comment') }}
{{ gettext('Post a comment…') }}{{ errorMsg }}
{{ gettext('No comments posted yet') }}