Skip to content

Instantly share code, notes, and snippets.

View robincher's full-sized avatar

Robin Cher robincher

61 followers · 138 following
View GitHub Profile
@robincher
robincher / dp-values.yaml
Created April 5, 2024 00:16
TAL-Sample-DP-Kong
image:
repository: kong/kong-gateway
tag: 3.4.3.5
env:
prefix: /kong_prefix/
database: "off"
role: data_plane
cluster_control_plane: kong-cp-cluster.kong-cp.svc.cluster.local:8005
cluster_telemetry_endpoint: kong-cp-cluster-telemetry.kong-cp.svc.cluster.local:8006
@robincher
robincher / cp-values.yaml
Created April 5, 2024 00:11
TAL-Sample-Kong-CP
image:
repository: kong/kong-gateway
tag: 3.4.3.5
env:
# Env variables to overwrite, read more here https://github.com/Kong/kong/blob/master/kong.conf.default
prefix: /kong_prefix/
role: control_plane
#Logs Output level https://docs.konghq.com/gateway/latest/configure/logging/
@robincher
robincher / tal-eks.yaml
Last active April 2, 2024 23:57
EKS Cluster Config
apiVersion: eksctl.io/v1alpha5
kind: ClusterConfig
metadata:
name: kong-tal-eks
region: ap-southeast-1
addons:
- name: vpc-cni
version: latest
@robincher
robincher / kong-docker.sh
Created March 9, 2023 07:43
Kong Docker Set-up
## Run Kong 3.2 with Docker Containers
#### Create Docker Network
docker network create kong-net
# Export License
export KONG_LICENSE_DATA=''
### Start a Postgres Container (If running db mode)
@robincher
robincher / kong-flux.yaml
Last active July 30, 2022 01:42
Kong Enterprise Stand-Alone with Flux
apiVersion: source.toolkit.fluxcd.io/v1beta2
kind: HelmRepository
metadata:
name: kong
namespace: flux-system
spec:
interval: 30m
url: https://charts.konghq.com
---
apiVersion: helm.toolkit.fluxcd.io/v2beta1
@robincher
robincher / kong-k3d.yaml
Created July 13, 2022 12:09
Deploying Kong Enterprise with Helm and k3d
# Kong for Kubernetes with Kong Enterprise with Enterprise features enabled and
# exposed via TLS-enabled Ingresses. Before installing:
# * Several settings (search for the string "CHANGEME") require user-provided
# Secrets. These Secrets must be created before installation.
# * Ingresses reference example "<service>.kong.CHANGEME.example" hostnames. These must
# be changed to an actual hostname that resolve to your proxy.
# * Ensure that your session configurations create cookies that are usable
# across your services. The admin session configuration must create cookies
# that are sent to both the admin API and Kong Manager, and any Dev Portal
# instances with authentication must create cookies that are sent to both
@robincher
robincher / aws-auth-patch.sh
Last active July 31, 2023 09:59
Patching aws-auth for EKS
#!/bin/bash
export AWS_ACCOUNT_ID=$1
export AWS_INSTANCE_ROLE=$2
export EKS_CLUSTER_NAME=$3
if [ -z "$AWS_ACCOUNT_ID" ]
then
echo -n "AWS Account Number: "
read AWS_ACCOUNT_ID
@robincher
robincher / insert-domains-mysql.sh
Created January 31, 2020 10:47
Insert database records from text file
#!/bin/bash
echo "Please enter database Password:"
read DB_PASSWD
if [ -z "DB_PASSWD" ]; then
echo "Please DB Password"
exit 1
fi
@robincher
robincher / kong-mtls-test.sh
Created August 29, 2019 09:43
Map ca certificate with consumer object
#!/bin/bash
# Create manual mappings between certificate and Consumer objec
curl -X POST -H 'Kong-Admin-Token:xxxxxx' http://localhost:8001/Scratch/consumers/helios/mtls-auth -d 'subject_name=helios.gemsapi.io'
# Test route with MTLS and Basic Auth Plugin enabled
curl -kv -H 'Authorization: Bearer Basic xxxxxxx' --key helios.key --cert helios.crt https://localhost:8443/mockbin/request
@robincher
robincher / self-sign-test.sh
Created August 29, 2019 09:39
Self-Signed CA and Client Certificate
#!/bin/bash
#Generate Self-signed CA
openssl req -x509 -sha256 -nodes -days 365 -newkey rsa:2048 -keyout ca.key -out ca.crt
#Make a directory
mkdir client
#Generate Corresponding client certificate
openssl genrsa -out client/helios.key 2048