Open Source

Supercharging Kubernetes with Jetstack Open Source

Enhancing the experience a tool at a time

cert-manager

cert-manager

cert-manager is a powerful, general-purpose certificate management controller for Kubernetes. Since it first became available as an open source project it has become hugely successful by helping cloud native platform teams to easily automate TLS certificates for Kubernetes and OpenShift workloads. It will obtain certificates from a variety of Issuers, both popular public Issuers as well as private Issuers, and ensure the certificates are valid and up-to-date, and will attempt to renew certificates at a configured time before expiry.

Kube-OIDC-Proxy

Kube-OIDC-Proxy

Kube-OIDC-Proxy is a Kubernetes-based reverse proxy that handles authenticating HTTP requests using OpenID Connect. This project can be used to bring OIDC authentication where OIDC is unavailable, such as managed Kubernetes services, or to lock down unauthenticated endpoints with OIDC access.

Preflight

Preflight

Preflight performs automatic configuration checks in a Kubernetes cluster.

Preflight packages use Open Policy Agent and its REGO language to define the policy that is going to be checked.

The tools is designed to be completely pluggable and can be used in a variety of scenarios from checking arbitrary Kubernetes workloads to making sure your GKE clusters are configured according to a certain policy.

Tarmak Logo

Tarmak

Tarmak and its underlying components are the product of Jetstack’s extensive experience working with customers to build and deploy Kubernetes in production at scale. Tarmak is an open source toolkit for Kubernetes cluster lifecycle management, built to be cloud-provider agnostic and gives consistent and reliable cluster deployment and management.

Kube-Lego

Kube-Lego

Kube-Lego is an open source project, started by Jetstack, for automating Let’s Encrypt TLS-enabled web services running in Kubernetes. Kube-Lego automates the process in Kubernetes by watching ingress resources and automatically requesting missing or expired TLS certificates from Let’s Encrypt.

  • Negotiates with an ACME server to obtain certificates for Ingress
  • Performs domain validations via ACME HTTP-01
  • Automates renewal process

Get started with Jetstack

Enquire about Subscription

Contact us