Skip to content

launchboxio/launchboxhq

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

338 Commits
.github/workflows
.github/workflows
 
 
app
app
 
 
bin
bin
 
 
config
config
 
 
db
db
 
 
deploy
deploy
 
 
examples
examples
 
 
lib
lib
 
 
log
log
 
 
public
public
 
 
spec
spec
 
 
storage
storage
 
 
test
test
 
 
tmp
tmp
 
 
vendor
vendor
 
 
.dockerignore
.dockerignore
 
 
.env.example
.env.example
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
.pre-commit-config.yaml
.pre-commit-config.yaml
 
 
.releaserc.json
.releaserc.json
 
 
.rspec
.rspec
 
 
.rubocop.yml
.rubocop.yml
 
 
.ruby-version
.ruby-version
 
 
CHANGELOG.md
CHANGELOG.md
 
 
Dockerfile
Dockerfile
 
 
Gemfile
Gemfile
 
 
Gemfile.lock
Gemfile.lock
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
Rakefile
Rakefile
 
 
TODOS.md
TODOS.md
 
 
config.ru
config.ru
 
 
docker-compose.yml
docker-compose.yml
 
 
entrypoint.sh
entrypoint.sh
 
 
helmfile.yaml
helmfile.yaml
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 
skaffold.yaml
skaffold.yaml
 
 
yarn.lock
yarn.lock
 
 

Repository files navigation

LaunchboxHQ

Installation

Helm

Development

TODO: Maybe move to bin/setup

# Clone the repository
git clone git@github.com:launchboxio/launchboxhq

# Generate a signing key for OIDC requests
openssl genpkey -algorithm RSA -out private_key.pem -pkeyopt rsa_keygen_bits:2048
kubectl create secret generic signing-certificate --from-file=private_key.pem -n lbx-system
# Start Vault and Postgres
docker-compose up -d

# Unseal Vault
docker-compose exec vault sh
vault operator init -n 1 -t 1
vault operator unseal
vault secrets enable transit

# Edit your .env file, replacing the Vault token
cp .env.example .env
vi .env

# Start rails
rails db:create && rails db:migrate
rails s

Generate the Kubernetes cluster authentication client

rails c
Doorkeeper::Application.create(name: "Cluster Authentication", confidential: false, redirect_uri: "http://localhost:8000")

Kubeconfig template

To connect to kubernetes using the OIDC provided by Launchbox

kubectl oidc-login get-token --oidc-issuer-url http://localhost:3000 --oidc-client-id=RSR00W3ZNJnlc2uPKBE7dx7zDwq_ZTlbeU7sqPkfrbk --oidc-extra-scope email -v8

user:
- name: <%= current_user.email %>
  user:
    exec:
      apiVersion: client.authentication.k8s.io/v1beta1
      args:
      - oidc-login
      - get-token
      - --oidc-issuer-url=<%= @client.uid %>
      - --oidc-client-id=<%= @domain %>
      - --oidc-extra-scope=email
      command: kubectl
      env: null
      interactiveMode: IfAvailable
      provideClusterInfo: false

About

No description, website, or topics provided.

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 47

v1.18.3 Latest
Nov 26, 2023
+ 46 releases

Packages

 
 
 

Contributors 2

  •  
  •  

Languages