Date: Fri, 03 Feb 2023 09:30:00 -0500
<p>Bret is joined by Matt Williams of Infra to show off their open source project Infra, which provides easy, centralized RBAC and auth to Kubernetes and more. </p><p>Infra is a new company taking on simplifying centralized infrastructure, user authentication and permissions. Their open source tool by the same name is quite easy to start with. In this episode, Matt does a great job of explaining the pain points of Kubernetes user management, certificate distribution and revocation, and more pain points that Infra is bringing simplicity to.</p><p>Streamed live on YouTube on November 10, 2022. Includes demos.</p><p><br /><strong>Unedited </strong><a href="https://www.youtube.com/watch?v=OMXzytQ9XrI"><strong>live recording</strong></a><strong> of this show on YouTube (Ep #191).</strong></p><p>★<strong>Topics★<br /></strong><a href="https://infrahq.com/">Infra Website</a><br /><a href="https://github.com/infrahq/infra">Infra on GitHub</a><br /><a href="https://www.alldaydevops.com">All Day DevOps free conference</a></p><p>Matt Williams<br />===========<br /><a href="https://twitter.com/Technovangelist">Matt on Twitter</a><br /><a href="https://www.youtube.com/technovangelist">Matt's YouTube Channel</a></p><p>★<strong>Join my Community</strong>★<br />New live <a href="http://bret.courses/autodeploy"><strong>course on CI automation and gitops deployments</strong></a><br />Best coupons for my <a href="https://www.bretfisher.com/courses"><strong>Docker and Kubernetes courses</strong></a><br />Chat with us and fellow students on our Discord Server <a href="https://devops.fan/"><strong>DevOps Fans</strong></a><strong><br /></strong>Grab some merch at <a href="https://bretfisher.myspreadshop.com/"><strong>Bret's Loot Box</strong></a></p><p>Homepage <a href="https://bretfisher.com/"><strong>bretfisher.com</strong></a></p> <ul> <li>(00:00) - DDT MAIN</li> <li>(00:04) - Intro</li> <li>(00:54) - Bret intro</li> <li>(01:53) - Main show </li> <li>(02:08) - Introducing Matt</li> <li>(02:40) - Today on the podcast</li> <li>(03:06) - Infra HQ and Company History</li> <li>(03:52) - How Infra came to be</li> <li>(06:40) - Datadog</li> <li>(08:34) - Infra and open source</li> <li>(09:59) - How Infra can help</li> <li>(10:24) - Core Infra functionality</li> <li>(11:56) - Bad idea</li> <li>(12:48) - Can't revoke certificates</li> <li>(16:11) - Painful Certificate Redistribution</li> <li>(17:11) - Why you need Infra</li> <li>(18:41) - Question</li> <li>(19:38) - Service accounts</li> <li>(20:22) - kubectl and pronunciations </li> <li>(21:57) - Question about OIDC</li> <li>(23:45) - Not just a Kubernetes tool</li> <li>(25:27) - Dealing with Keys is Hard</li> <li>(26:08) - Offboarding can be harder than Onboarding</li> <li>(28:24) - Workflow</li> <li>(29:21) - Demo intro</li> <li>(29:51) - End demo</li> <li>(30:02) - Cloud hosted and self-hosted</li> <li>(30:35) - Providers, Okta</li> <li>(32:02) - Is Infra GIOps Compatible?</li> <li>(34:53) - Quick summary of the demo for audio listeners</li> <li>(36:44) - Dumbed down roles?</li> <li>(38:08) - Question</li> <li>(38:52) - A tool to add to your toolbox</li> <li>(40:38) - Getting started and contributing</li> <li>(41:25) - Question</li> <li>(41:51) - Auditing in the future</li> <li>(42:49) - A Safe and Secure Model</li> <li>(43:52) - Wrapping up</li> <li>(45:42) - Outro</li> </ul> <br /><p><strong>Support this show and get exclusive benefits on </strong><a href="https://patreon.com/BretFisher"><strong>Patreon</strong></a><strong>, </strong><a href="https://www.youtube.com/@BretFisher"><strong>YouTube</strong></a><strong>, or </strong><a href="https://www.bretfisher.com/"><strong>bretfisher.com</strong></a><strong>!</strong></p>