Yiting Jiang
DaoCloud, Dev Manager
Actions
Graduated at Tong ji University with Master degree, majored in Computer Software and Theory.
Worked in EMC, VMWare and DellEMC Companies before.
Use Keycloak to build an authentication system for cloud-native application
Application or API needs to have the most basic identity authentication mechanism, and the enterprise-level management system needs to implement functions such as Identity management, single sign-on, and security policy settings. Keycloak is an identity and access management (IAM) solution that can be easily deployed on the Kubernetes platform to provide applications and APIs with features such as centralized authentication. This speech will explain that our cloud native management platform makes full use of the powerful and comprehensive features of Keycloak to implement enterprise-level identity and security access management functions, and we also create some plugins, making appropriate expansions in the aspect of IDP and Event functions to play Keycloak to the greatest extent.
Kubernetes native authorization solution for micro-service application
With the development of the cloud native ecosystem, more and more enterprises run their micro-service application systems on Kubernetes. Many cloud-native platforms have comprehensive and diverse functions, will also be deployed on Kubernetes in the form of micro-services. For these micro-service systems, authorization is an inescapable basic function. This speech will list some traditional application authorization implementation methods, advantages and disadvantages, and will also elaborate on the practice of our cloud native management platform based on Kubernetes. We use the Kubernetes CRD mechanism and learn from the Kubernetes RBAC implementation principle to design the role permission model. At the same time, we use the list/watch mechanism of the Kubernetes apiserver to implement the SDK, load the permission information into the memory, and provide authorization capabilities for micro-services. It has the advantages of simple implementation, fast and accurate authorization.
Yiting Jiang
DaoCloud, Dev Manager
Actions
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top