Conference:  KubeCon + CloudNativeCon Europe 2023

Authors: Joe Betz

2023-04-18

Have you ever operated a Kubernetes cluster for multiple developers? If you have, you probably realized quickly that things are going to be a lot smoother if you could just enforce some basic conventions. Maybe all your services have a well defined endpoint for the liveness probe but developers sometimes forget to set it up. Or maybe developers should always use a semantic version tag on their containers and avoid :latest. Or maybe there is a deprecated Kubernetes API field and you'd like to ensure it is never used in your cluster. In this talk we will run through a series of easy solutions to help enforce conventions using only YAML. You have a lot more control that you might realize. Learn from a Kubernetes contributor involved in the development of numerous extensibility features including CRDs, admission webhooks and admission policies. We will show you some handy tricks and leveraging new features including new features like Validating Admission Policies alpha API introduced in 1.26.

Conference:  KubeCon + CloudNativeCon Europe 2022

Authors: Fabrizio Pandini, Rafael Fernández López

2022-05-18

The presentation discusses the extensible design pattern for Kubernetes controllers and the challenges and opportunities in developing them as a community.

• The extensible design pattern allows for running plugins in a separate process with a dedicated security context and the ability to add or remove plugins at any time.
• The pattern requires careful consideration of dependencies with external services and organizational implications.
• The community needs to work together to solve problems such as documenting behavioral dependencies and defining contracts for extensibility points.
• Frameworks and libraries can be developed to make implementing extensible controllers easier and more standardized.