Namespace as a Service with vanilla kubernetes objects

#kubernetes #beginners #tips

With plain kubernetes objects a simple multi-tenancy model can be achieved using the following kubernetes objects:

namespace
This creates a namespace object with additional annotations (to be used later for additional capabilities)
resourcequota to apply quotas in-terms of:
cpu
memory
total storage volume
pv counts
pvc counts
pod counts
secret counts
service counts (clusterIP, nodePort and loadBalancer)
limitrange default min and max for cpu, memory and pvc sizes

optionally

networkpolicy to restrict ingress and egress traffic
serviceaccount for generic account for machine users and automation use-cases
rbac for authorization use cases

Repo link with a helm chart to do the above is here

The Next Generation Developer Platform

Coherence is the first Platform-as-a-Service you can control. Unlike "black-box" platforms that are opinionated about the infra you can deploy, Coherence is powered by CNC, the open-source IaC framework, which offers limitless customization.

Learn more

Top comments (0)

The Most Contextual AI Development Assistant

Our centralized storage agent works on-device, unifying various developer tools to proactively capture and enrich useful materials, streamline collaboration, and solve complex problems through a contextual understanding of your unique workflow.

👥 Ideal for solo developers, teams, and cross-company projects