Enforcing Bespoke Policies in Kubernetes [I]
![Enforcing Bespoke Policies in Kubernetes [I]](/2017/images/all/lf_huffc03acb4b89c823f315cae16e4b2e6b_29065_900x500_fit_q75_box.jpg)
Kubernetes enables fully-automated, self-service management of large-scale, heterogenous deployments. These deployments are often managed by distributed engineering teams that have unique requirements …
| Talk Title | Enforcing Bespoke Policies in Kubernetes [I] |
| Speakers | Torin Sandall (Software Engineer, Styra) |
| Conference | KubeCon + CloudNativeCon North America |
| Conf Tag | |
| Location | Austin, TX, United States |
| Date | Dec 4- 8, 2017 |
| URL | Talk Page |
| Slides | Talk Slides |
| Video | |
Kubernetes enables fully-automated, self-service management of large-scale, heterogenous deployments. These deployments are often managed by distributed engineering teams that have unique requirements for how the platform treats their workloads, but at the same time, they must conform to organization-wide constraints around cost, security, and performance. As Kubernetes matures, extensibility has become a critical feature that organizations can leverage to enforce their organization’s bespoke policies. In this talk, Torin explains how to use extensibility features in Kubernetes (e.g., External Admission Control) to enforce custom policies over workloads. The talk shows how to build custom admission controllers using Initializers and Webhooks, and shows how the same features lay the groundwork for policy-based control through integration with third party policy engines like the Open Policy Agent project.
![Kafka Operator: Managing and Operating Kafka Clusters in Kubernetes [A]](/2017/images/all/lf_huffc03acb4b89c823f315cae16e4b2e6b_29065_700x350_resize_q75_box.jpg)
