With plain kubernetes objects a simple multi-tenancy model can be achieved using the following kubernetes objects:
namespace
This creates a namespace object with additional annotations (to be used later for additional capabilities)resourcequota to apply quotas in-terms of:
cpu
memory
total storage volume
pv counts
pvc counts
pod counts
secret counts
service counts (clusterIP, nodePort and loadBalancer)
limitrange default min and max for cpu, memory and pvc sizes
optionally
networkpolicy to restrict ingress and egress traffic
serviceaccount for generic account for machine users and automation use-cases
rbac for authorization use cases
Repo link with a helm chart to do the above is here
Top comments (0)