I’ve setup a Jupyter app to be deployed to a K8s cluster and have been working on an RStudio app. It seems that each app will rely on the individual software’s auth mechanisms. I’ve found RStudio’s auth mechanisms to be challenging given how it is run on K8s.
I was wondering if the OOD team or anyone else has experimented with some common auth layer that could maybe be overlaid on all apps that would perform the auth in a uniform way and would avoid one-off auth solutions and customizations for every app.
One of my first ideas is a K8s Ingress resource that uses the Secret shared with OOD (of the form abc-123-secret) to perform the auth. All the app pods would only be accessible via the common Ingress. There is probably a fair amount to work out with that. I’ll see if it can work in some simple cases first.