In order to run this operator you need to install kopf
, requests
, and conjur-api
which technically requires
python3.10. However the PyPI install is broken anyway, so if you download and install the module from source you can change
the required version in the setup.cfg
file to the python3 version you have. As long as it was compiled with openssl
1.1.1 it should work.
You can install the first two requirements with python3 -m pip install kopf requests
and the downloaded/cloned version
of conjur-api
with python3 -m pip install -e .
while in the project directory.
After this you will need a running instance of Conjur. The file is currently setup to connect to the developer version in the
cyberark/conjur
repo. You will need update the password
variable with the correct API key no matter what, and the other
conjur configuration variables if you use a different Conjur instance.
After this you can run the operator with
kopf example_operator.py
and create a new namespace in your cluster with the prefix conj-
and a new policy should be added to the conjur instance in root
.