Erlang cluster on Kubernetes: Introduction

A few weeks ago, I decided to write a blog post about using mutual TLS to secure Erlang distribution (clustering), with auto-provisioning of certificates when running in Kubernetes. It took a little longer to write up than I expected, and turned into a series of blog posts.

• Erlang cluster on Kubernetes: Introduction (this post; 21 Dec 2022 19:40)
• Erlang cluster on Kubernetes: Initial Deployment (21 Dec 2022 19:45)
• Erlang cluster on Kubernetes: HTTP Service (21 Dec 2022 19:47)
• Erlang cluster on Kubernetes: Speeding up the container build (21 Dec 2022 19:49)
• Erlang cluster on Kubernetes: Erlang Cookie (21 Dec 2022 19:51)
• Erlang cluster on Kubernetes: Erlang Clustering (21 Dec 2022 19:52)
• Erlang cluster on Kubernetes: TLS distribution (22 Dec 2022 09:52)
• Erlang cluster on Kubernetes: Basic init container (22 Dec 2022 09:56)
• Erlang cluster on Kubernetes: Creating Certificate signing requests with OpenSSL (22 Dec 2022 09:58)
• Erlang cluster on Kubernetes: Submitting certificate requests to cert-manager (22 Dec 2022 10:01)
• Erlang cluster on Kubernetes: Using the generated certificates (22 Dec 2022 10:04)
• Erlang cluster on Kubernetes: SSH daemon (22 Dec 2022 14:35)
• Erlang cluster on Kubernetes: SSH public key authentication (22 Dec 2022 15:25)
• Erlang cluster on Kubernetes: Is it mutual? (22 Dec 2022 16:45)
• Erlang cluster on Kubernetes: Readiness Probe (22 Dec 2022 17:50)
• Erlang cluster on Kubernetes: Non-root user (22 Dec 2022 18:08)
• Erlang cluster on Kubernetes: pid zero (22 Dec 2022 18:13)
• Erlang cluster on Kubernetes: Using a namespace-scoped issuer (23 Dec 2022 17:06)
• Erlang cluster on Kubernetes: Polling the CertificateRequest (23 Dec 2022 17:19)
• Erlang cluster on Kubernetes: CertificateRequest cleanup (23 Dec 2022 17:36)
• Erlang cluster on Kubernetes: Conclusion (23 Dec 2022 18:09)

You can follow along by cloning the rlipscombe/erlang-cluster project from Github. The posts in this series and the merge commits in that project are broadly lined up.

I also spent about 8 hours rewriting the commit history of the project so that it forms a coherent story. Please feel free to read it as one.

Related posts

• Erlang clustering recap
• Erlang TLS Distribution
• Options for automatically creating certificates for mutual pod authentication
• Installing cert-manager
• Erlang application versioning

Follow-up posts

• Erlang cluster on Kubernetes: Fatal - Certificate Expired