update kube

2025-12-21 09:19:45 -06:00 · 2024-12-31 18:42:20 -05:00
parent 47cce7800b
commit d0541a53e5
2 changed files with 87 additions and 1 deletions
--- a/README.md
+++ b/README.md
@@ -26,7 +26,7 @@ I made CyberPAM for my own use, but I'm happy to share it with the community. I'

 What is PAM? <a href="https://en.wikipedia.org/wiki/Privileged_access_management">PAM</a> is the process of managing access to resources. It is a critical component of any security architecture.

-<p align="center"> <b>⚡️ This is a SINGLE CONTAINER and can go from pull to production in 5 minutes 🚀</b> </p>
+<p align="center"> <b>⚡️ This is a SINGLE CONTAINER (Docker or Kubernetes) and can go from pull to production in 5 minutes 🚀</b> </p>


 ## 🌟 Features
@@ -108,6 +108,7 @@ What is PAM? <a href="https://en.wikipedia.org/wiki/Privileged_access_management

 CyberPAM is distributed as a Docker container for easy deployment and a 5 minute setup:

+### Docker
 *You can just copy paste this into your terminal 🖥️ to deploy or upgrade*
 ```bash
 # Pull the latest image
@@ -127,6 +128,12 @@ docker run -d \
 docker logs cyberpam
 ```

+### Kubernetes
+
+```bash
+kubectl apply -f kubernetes/deployment-cyberpam.yaml
+```
+
 > *As of 0.1.1c, the container was designed to user docker volumes for persistence. You could also use a bind mount to the same effect.*

 ## ⚡️NOTICE - GET YOUR ADMIN PASSWORD👋
--- a/kubernetes/deployment-cyberpam.yaml
+++ b/kubernetes/deployment-cyberpam.yaml
@@ -0,0 +1,79 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: cyberpam
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: cyberpam
+spec:
+  selector:
+    matchLabels:
+      app: cyberpam
+  replicas: 1
+  template:
+    metadata:
+      labels:
+        app: cyberpam
+    spec:
+      containers:
+        - name: cyberpam
+          image: mattrogers/cyberpam:latest
+          ports:
+            - containerPort: 8080
+              name: http
+          resources:
+            requests:
+              cpu: 100m
+              memory: 256Mi
+            limits:
+              cpu: 500m
+              memory: 1024Mi
+      volumes:
+        - name: data-volume
+          persistentVolumeClaim:
+            claimName: cyberpam-data
+        - name: recordings-volume
+          persistentVolumeClaim:
+            claimName: cyberpam-recordings
+---
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: cyberpam-data
+  namespace: cyberpam
+spec:
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: 1Gi
+---
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: cyberpam-recordings
+  namespace: cyberpam
+spec:
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: 5Gi
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: cyberpam
+  namespace: cyberpam
+spec:
+  type: LoadBalancer
+  ports:
+    - name: http
+      port: 8080
+      protocol: TCP
+      targetPort: 8080
+  selector:
+    app: cyberpam
+