Let's Encrypt, OAuth 2, and Kubernetes Ingress

In mid-August 2016, fromAtoB switched from running on a few hand-managed bare-metal servers to Google Cloud Platform (GCP), using saltstack, packer, and terraform to programmatically define and manage our infrastructure. After this migration, it was relatively straightforward to setup and expose our internal services such as kibana, grafana, and prometheus to the internet at large with a small set of salt states that managed oauth2_proxy, nginx, and lego on individual machines running the services managed by systemd. [Read More]