Inspecting Kubernetes JWT tokens
Start a cluster with a dummy workload
kind create cluster
kubectl apply -f cli.yaml
kubectl apply -f discovery.yaml
thilinapiy
/ README.md
Created
May 13, 2022 17:56
— forked from reegnz/README.md
Inspecting Kubernetes JWT tokens
View README.md
thilinapiy
/ keybase.md
Created
June 5, 2019 17:11
View keybase.md
Keybase proof
I hereby claim:
- I am thilinapiy on github.
- I am thilinapiy (https://keybase.io/thilinapiy) on keybase.
- I have a public key whose fingerprint is 478E 258E F454 3443 36F9 B241 69FD CF7F E0C0 A1A3
To claim this, I am signing this object:
thilinapiy
/ isanka.py
Created
January 28, 2019 05:44
View isanka.py
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/env python | |
| # python3.6 filename | |
| def solution(A): | |
| out_of_order_count = 0 | |
| existing_hights = A | |
| sorted_hights = sorted(A) | |
| i = 0 | |
| j = 0 |
thilinapiy
/ stop-start-aurora.py
Last active
November 13, 2018 05:16
View stop-start-aurora.py
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import boto3 | |
| ClusterID = "db-cluster" | |
| session = boto3.Session( | |
| region_name='ap-southeast-2', | |
| aws_access_key_id='', | |
| aws_secret_access_key='', | |
| ) | |
| rds = session.client('rds') |
thilinapiy
/ setup_k8s.sh
Created
November 16, 2017 09:31
View setup_k8s.sh
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # Check for root | |
| if [ `id -u` != 0 ] ; then | |
| print_error "Need root access.\nRun the script as 'root'" | |
| exit 10 | |
| fi | |
| print_usage(){ | |
| echo "Usage" |
thilinapiy
/ nginx-ingress-controller.yaml
Created
November 16, 2017 07:05
Complete nginx-ingress-controller yaml file.
View nginx-ingress-controller.yaml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --- | |
| apiVersion: v1 | |
| kind: Namespace | |
| metadata: | |
| name: ingress-nginx | |
| --- | |
| apiVersion: extensions/v1beta1 | |
| kind: Deployment | |
| metadata: | |
| name: default-http-backend |
thilinapiy
/ mongo-statefulset.yaml
Created
October 27, 2017 12:21
MongoDB statefulset for kubernetes with authentication and replication
View mongo-statefulset.yaml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ## Generate a key | |
| # openssl rand -base64 741 > mongodb-keyfile | |
| ## Create k8s secrets | |
| # kubectl create secret generic mongo-key --from-file=mongodb-keyfile | |
| --- | |
| apiVersion: v1 | |
| kind: Service | |
| metadata: | |
| name: mongo | |
| labels: |
thilinapiy
/ ontime-go.go
Last active
September 29, 2017 00:47
Create a onetime password sharing link using vault as secret store
View ontime-go.go
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| // Run a `vault server -dev` to test. | |
| // set HOSTNAME, PREFIX, VAULT_ADDR and VAULT_TOKEN environment variable and others as needed. | |
| // curl -XPOST http://localhost:8080/add -d "message=This is my secet message to you." | |
| import ( | |
| "os" | |
| "fmt" | |
| "log" | |
| "net/http" |
thilinapiy
/ mystatusmenu.py
Created
May 6, 2014 13:16
This is a sample status menu (appindicator) python 3 script. Via this script you can switch off the screen and open Facebook via google chrome.
thilinapiy
/ apachesslgen.sh
Created
October 13, 2013 04:44
Self-signed SSL key generation script for apache webhost.
View apachesslgen.sh
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # This script will generate self-signed SSL certificates for a apache webhost. | |
| # Use only for testinsg purpos and not recommend for production use. | |
| # | |
| # Thilina Piyasundara | |
| # 2013-08-08 | |
| echo "Enter the fqdn : " | |
| read fqdn |
NewerOlder