Secure cluster membership with join secret authentication
To enhance security in multi-cluster environments, WEKA supports join secret authentication, which ensures that only authorized backends with the correct secret can join a cluster. This mechanism prevents accidental cross-cluster joins and unauthorized access, maintaining a secure and isolated cluster environment.
Enable join secret authentication
Join secret authentication is enabled during cluster creation by specifying a secret:
The <join-secret>
acts as a shared credential required for all backend containers that need to join the cluster.
Set join secret for existing clusters
If the cluster was initially created without a join secret, you can assign it post-deployment to each container using:
Replace <container-id>
with the container’s identifier and with the desired join secret value.
Add resources to a cluster with join secret
When expanding a cluster with join secret authentication enabled, the following commands must include the correct secret:
Set up a new container:
Join using local resources:
Related topic
Last updated