February 16, 2021 | 16:15

If you need to use basic auth when behind IAP, you can work around it by setting a custom header, and then remapping it after you get past IAP. Specifically when running NGINX Ingress on GKE.

My example is for allowing Basic Auth to Jenkins while running behind IAP on GKE. I created a custom header called X-Jenkins-Authorization. (This can be anything, and for any service, not just jenkins).

Some official examples: https://github.com/kubernetes/ingress-nginx/tree/master/docs/examples/customization/custom-headers

Kubernetes Nginx Ingress configmap changes

    proxy-set-headers: `somens/nginx-proxy-headers`

Proxy Headers config map:

apiVersion: v1
  Authorization: ${http_x_jenkins_authorization}
kind: ConfigMap
  name: nginx-proxy-headers
  namespace: somens

Apply those accordingly, and now you can basic auth through IAP, you just need to set your basic auth in the appropriate header.

May 16, 2020 | 20:49

I had third party software that relied on NGINX ingress and wouldn’t work with GKE Ingress. After lots of digging around and piecing together some info, I found I can attach expose an NEG directly to the ingress controller and route into the cluster that way.

Just append the following to your annotations.

cloud.google.com/neg: '{"exposed_ports": {"80":{}, "443":{}}}'

If you want to use HTTPS load balancer, only 80 and 443 will be usable. if you add more ports, more things will be accessible through the NEGs it creates. 1 NEG for each.


September 8, 2017 | 16:38

Running CS:GO on a Distributed Blockchain Compute Network

Many that conversed with me in the cryptocurrency world know that I am a huge fan and supporter of SONM. After reading their whitepaper, I quickly saw that they had a very adoptable design to their tech. Now, its not purely blockchain. It uses the blockchain to distributed tasks, send messaging, and other things like that, the actual tasks get run on standard compute devices using Docker. So to put it long story short, SONM is a distributed docker runner with blockchain to handle distribution. Read more

March 21, 2013 | 19:00

Using IntelliJ/WebStorm to debug Dart Web Applications

Since I feel that the Dart Plugin in IntelliJ is at a point where it can do most, if not all things that the Dart Editor can do. I thought I would show how to setup debugging of Web Applications. Primarily because a certain few on IRC wanted a step-by-step guide because they were too lazy to figure it out (you know who you are….. Don). Seeing how I have been Evangelizing IntelliJ/Webstorm on IRC, I decided to just help out the community with this mini-guide. To save on typing IntelliJ/Webstorm everywhere, I am going to us IW as a short for refering to both. I will be using Spectre as my test project, because I do not have any of my own personal projects that are Web Apps, I mostly do backend stuff. Plus this also shows that this can handle large complex applications. Read more

February 21, 2013 | 20:00

Why are there no true cross-platform filesystems?

As someone that has recently installed multiple operating systems on my desktop, I find a major problem that I think shouldn’t really exist, but does. Over the last few months I have made it so that my PC desktop runs Windows 8, Linux Mint 14, and OSX Mountain Lion. This was a long endeavor, especially OSX. But everything works nicely and I have the development environments I need on all 3 platforms and all the additional chat, social, and browsing software I like to have running. Read more

September 29, 2012 | 19:00

Language Bloat

Disclaimer: After reading through this a few times, I realized my train of thought jumps around a lot on this. There is just so much going on in my head on this topic, its hard to not jump around. I apologize for the all over the place article. Hopefully my point is still conveyed. Update: I just want to clarify that when I refer to JVM/CLR I include their primary language and their standard libraries. Read more

© Yulian Kuncheff 2020

Powered by Hugo.