Alen Komljen

Hi, I'm Alen Komljen and I write this blog. I help companies to embrace DevOps and Cloud Native.

kubernetes, oauth, authentication

Protect Kubernetes External Endpoints with OAuth2 Proxy

Sometimes you just want to expose some services that don't have any authentication mechanism. Many users have this issue, especially with Kubernetes, because it is damn easy to expose any service over ingress and also to have HTTPS by default with Let's Encrypt. The missing piece could be authentication in the application you want to expose. In this case, we can always leverage external authentication from GitHub, Google, and many others via OAuth. This is where OAuth2 Proxy comes into ...

https, letsencrypt, kubernetes, ingress

Get Automatic HTTPS with Let's Encrypt and Kubernetes Ingress

A few days ago I read a great post from Troy Hunt about HTTPS. The title  "HTTPS is easy" is there for a good reason! HTTPS is easy, especially with the platforms like Kubernetes. Unfortunately, not all people agree with this. I understand that for some huge organizations moving all traffic to HTTPS is not trivial, but for all others saying how Google is evil with forcing it is just nonsense. You should use HTTPS for every external endpoint and ...

monthly update

Monthly Update 4

Welcome to another monthly update. Last week I was on vacation in Brela, Croatia. Really beautiful place. So, I feel fresh again to start writing. I wrote only three articles in June and one of them was the last monthly update. Definitely not happy with that. I need to write more.This view tho! pic.twitter.com/pMKCCbCCtH— Alen Komljen (@alenkomljen) June 26, 2018 My UpdatesAs you already know this blog is running with Ghost. The default editor was ...

kubernetes, ingress, aws

AWS Cost Savings by Utilizing Kubernetes Ingress with Classic ELB

A few months ago I wrote an article about Kubernetes Nginx Ingress Controller. That article is actually the second most popular post on this blog. It's focused on using Kubernetes ingress for on-premises deployments. But, most of the users run Kubernetes on AWS and other public cloud providers. The problem is that for each service with LoadBalancer type, AWS will create the new ELB. And that can be pricey. With Kubernetes ingress you will need only one. How Does it ...

serverless

Serverless: The New Way of Thinking

I'm preparing the first CNCF meetup in Sarajevo and thinking about what would be interesting to present at the first meetup. Of course, I will talk a little bit about CNCF in general, but I want something interesting for the second talk. Something that will bring more developers to future CNCF meetups. And, as you can guess it will be about Serverless. I'm not expert in this area, but I like the idea. My colleague, Andan Rahic loves to write ...

monthly update

Monthly Update 3

It took me a while to write this update. A lot of is going on in my private life and it is hard to find some free time to write. But, I enjoy writing and sharing. There are some great and important things I want to share in this monthly update. My Updates A few weeks ago I created Cloud Native meetup group in Sarajevo. In Sarajevo we don't have any DevOps or Cloud Native related meetups. But, I know ...