jbu.io

Code, Cloud Computing and Docker

Archives for April 2016

Securing Mesosphere Marathon using the Marathon-LDAP Plugin

By 5 Comments

Mesosphere Marathon has adapted their plugin interface, offering two extension points.  This includes the ability to have custom plugins handling UI/Rest based authentication as well as securing operations.

I looked around to see what has been released in the open source community and didn’t see much.  I wanted to be able to lock down Marathon based on the following requirements:

  • UI/REST based authentication against LDAP / Active Directory
  • Ability to offer flexible configuration based on LDAP Groups, for example:
    • Everyone who is authenticated should be able to see running containers
    • Admins have unlimited control
    • Developers can do full CRUD operations against an ID namespace of /dev

As a result of these requirements I decided to create the Marathon-LDAP Plugin.   This article will cover how easy it is to secure your Marathon clusters against an LDAP server.

[Read more…]

Eating my own dog food: Building a PaaS

By Leave a Comment

For the past few years I have been a key game changer in moving my employers into SOA/Microservices architecture.  Along with this I have pushed Mesos/Marathon and Docker as the clustering/container technology.  I have completely changed the way engineering handles processes to be alignment with automation and continuous delivery of many services.

I had an epiphany when talking to a friend recently… For whatever reason I don’t use any of the above technologies for my personal blogs, websites and open-source projects.  Yes, I contribute to the Docker project and have written management tools to handle blue/green deployments but I’m not using them for my own (outside-of-work) coding.

Why you might ask?  I guess I was probably too exhausted from working 12+ hour days and leading my existing projects after hours to put the time in.  Rackspace is one of my sponsors and along with that I receive a generous cloud credit each month.  I’ve been using a fraction of what I could possibly use from them.

[Read more…]