HashiCorp Vault for Dummies: K8s Auth setup in an External Vault (WSL)

Intro This is part three of our Vault for Dummies series. After Part 2 where we set up Vault with Transit Auto-unseal, it’s time to tackle Kubernetes authentication, from outside the cluster. In this post, we’ll walk through setting up Kubernetes auth with an external Vault, so your K8s workloads can securely authenticate and pull …

HashiCorp Vault for Dummies: Transit Auto-Unseal Across 2 WSL Nodes

Intro This is part two of our Vault for Dummies series. After setting up a Vault server with Raft and TLS in part1, we’ll now configure it to auto-unseal at startup using another Vault server as a Transit engine. Perfect if you want to simulate a cluster across nodes in WSL. This guide walks you …

HashiCorp Vault for Dummies: Setup your 1st Vault with TLS (WSL)

Intro Vault by HashiCorp is a powerful tool for managing secrets, credentials, and encrypted data. In this guide, you’ll learn how to set up a local Vault server using Raft storage and TLS in a WSL (Windows Subsystem for Linux) environment. Whether you’re just starting with secrets management, prepping for the Vault Associate exam, or …

Supabase vs. Keycloak: Your SaaS’ Best Auth

Intro When building a SaaS application, one of the first things you need to get right is authentication. Without secure and user-friendly sign-ins, your app could lose trust and fail to scale. But with so many options out there, choosing the right authentication tool can be a headache. Two of the most popular open-source solutions …

What’s OIDC and why should you use it asap in your GitHub pipeline (keyless)

Hackers Paradise!                        — “ 10 million credentials from GitHub were accessible in 2022 alone.” — This is the shocking truth exposed in a recent report published by secrets-management firm GitGuardian. That’s 5.5 out of every 1,000 commits to GitHub spilling secrets, putting applications & businesses at serious risk.Scattered & hard-coded secrets across environments are one …