Open alexellis opened 4 years ago
It looks like authentication is missing. I would recommend you add it by default since some people will run this on a public server or with ngrok or inlets.
I will incorporate Keycloak’s Gatekeeper and an ingress controller.
https://github.com/keycloak/keycloak-gatekeeper
Another option would be a combo of an envoy sidecar and Keycloak, using Keycloak’s JWKS and envoy JWT validation
Started in #3
Useful guide: https://www.twistlock.com/labs-blog/securing-kubernetes-openfaas-beyond/
It looks like authentication is missing. I would recommend you add it by default since some people will run this on a public server or with ngrok or inlets.