Skip to content
/ guacamole-k8s Public

automatic remote desktop discovery for Guacamole in Kubernetes

guacamole.njha.dev

License

View license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

nikhiljha/guacamole-k8s

BranchesTags

Repository files navigation

guacamole-k8s

This repository contains a Guacamole plugin that automatically discovers Kubernetes services and adds them to the Guacamole interface.

Usage

First, make sure your authentication method of choice has priority over this one. For example, if you're using the openid plugin, make sure it's prioritized in $GUACAMOLE_HOME/guacamole.properties.

extension-priority: openid

Then, make sure your Guacamole instance has access to the Kubernetes API. This can be done by creating a cluster role that allows access to services.

resource "kubernetes_cluster_role" "guacamole" {
  metadata {
    name = "guacamole"
  }
  rule {
    api_groups = [""]
    resources  = ["services"]
    verbs      = ["get", "list", "watch"]
  }
}

Create a Kubernetes pod that runs a VNC server. Then, create an associated service that has the following labels...

guacamole.njha.dev/enabled: "true"

And also the following annotations (replace 5900 with the port the VNC server is running on). The owner annotation is used to determine who can access the service. Authentication can be handled by any one of the other Guacamole plugins.

guacamole.njha.dev/vnc: "5900"
guacamole.njha.dev/owner: "foo@example.com"

About

automatic remote desktop discovery for Guacamole in Kubernetes

guacamole.njha.dev

Topics

guacamole guacamole-extension

Resources

Readme

License

View license
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases 1

v1.0.0 Initial Release Latest
Mar 9, 2024

Languages