AWS/OktaAKS

Notes for logging into K8S (AKS) on AWS using Okta authentication for Mac
docker run -v ~/.okta/config.properties:/root/.okta/config.properties -v ~/.aws:/root/.aws -it diepes/debug
apt update
apt install openjdk-11-jre. >> No release candidate
- apt install default-jre >> included openjdk-17-jre
From: https://github.com/tom-smith-okta/okta-awscli-java/blob/master/Dockerfile
- curl 'https://raw.githubusercontent.com/oktadeveloper/okta-aws-cli-assume-role/master/bin/install.sh' -o install.sh ; bash install.sh -i
- # After install
- . "$HOME/.okta/bash_functions"
- export PATH="$HOME/.okta/bin:$PATH"
Verify with okta-aws - pick a profile name, any name.
- # okta-aws oktaprofile sts get-caller-identity
- For this example you will now find a new profile oktaprofile under cat ~/.aws/credentials as [oktaprofile]
List EKS clusters
- aws eks list-clusters --profile oktaprofile --region ap-southeast-2
Now install kubectl to get and verify credentials if missing
- From: https://kubernetes.io/docs/tasks/tools/install-kubectl-linux/
  - https://kubernetes.io/docs/tasks/tools/install-kubectl-linux/
    - x86-64 # curl -LO "https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/linux/amd64/kubectl"
    - chmod +x kubectl; mv kubectl /usr/local/bin