The Ingress controller is an ideal location for centralized authentication and authorization in Kubernetes. We show how to implement single sign-on with NGINX Ingress Controller as the relaying party and Okta as the identity provider in the OIDC Authorization Code Flow.
In this blog we show how to use NGINX Plus for OpenID Connect (OIDC) authentication of applications behind the Ingress in a Kubernetes environment. We provide instructions for all components: Azure as the identity provider, Kubernetes, Docker, NGINX Plus, and a sample application.
In this installment of our "Ask NGINX" series, we discuss UDP health checks, having NGINX Plus verify JWTs generated with Microsoft Active Directory, performing client certificate-based authentication for IIS servers, and obtaining metrics for website visits or page views.