Visit https://console.pomerium.app and register for an account.
kubectl apply -k https://github.com/pomerium/pomerium/k8s/zero?ref=main
(that would install an evergreen main
)
apiVersion: v1
kind: Secret
metadata:
name: pomerium
namespace: pomerium-zero
type: Opaque
stringData:
pomerium_zero_token:
kubectl apply -f pomerium-secret.yaml
Now your Pomerium deployment should be up and running.
- The externally available address of your Pomerium Cluster should be set to the value assigned by your Load Balancer:
kubectl get svc/pomerium-proxy -n pomerium-zero -o=jsonpath='{.status.loadBalancer.ingress[0].ip}'
- Because container is configured to run as non-root, the following should be adjusted:
- http redirect address set to
:8080
- server address set to
:8443