Open Source
Supercharging Kubernetes with Jetstack Open Source
Enhancing the experience a tool at a time
cert-manager
cert-manager is a powerful, general-purpose certificate management controller for Kubernetes. Since it first became available as an open source project it has become hugely successful by helping cloud native platform teams to easily automate TLS certificates for Kubernetes and OpenShift workloads. It will obtain certificates from a variety of Issuers, both popular public Issuers as well as private Issuers, and ensure the certificates are valid and up-to-date, and will attempt to renew certificates at a configured time before expiry.
Kube-OIDC-Proxy
Kube-OIDC-Proxy is a Kubernetes-based reverse proxy that handles authenticating HTTP requests using OpenID Connect. This project can be used to bring OIDC authentication where OIDC is unavailable, such as managed Kubernetes services, or to lock down unauthenticated endpoints with OIDC access.
Tarmak
Tarmak and its underlying components are the product of Jetstack’s extensive experience working with customers to build and deploy Kubernetes in production at scale. Tarmak is an open source toolkit for Kubernetes cluster lifecycle management, built to be cloud-provider agnostic and gives consistent and reliable cluster deployment and management.
Kube-Lego
Kube-Lego is an open source project, started by Jetstack, for automating Let’s Encrypt TLS-enabled web services running in Kubernetes. Kube-Lego automates the process in Kubernetes by watching ingress resources and automatically requesting missing or expired TLS certificates from Let’s Encrypt.
- Negotiates with an ACME server to obtain certificates for Ingress
- Performs domain validations via ACME HTTP-01
- Automates renewal process