kiosk vs cluster-api-provider-nested

Our great sponsors

WorkOS - The modern identity platform for B2B SaaS

InfluxDB - Power Real-Time Data Analytics at Scale

SaaSHub - Software Alternatives and Reviews

Our great sponsors

kiosk		cluster-api-provider-nested
	Project
8	Mentions	6
1,067	Stars	293
1.0%	Growth	0.3%
0.0	Activity	4.7
7 months ago	Latest Commit	11 days ago
Go	Language	Go
Apache License 2.0	License	Apache License 2.0

The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.

kiosk

Posts with mentions or reviews of kiosk. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2023-04-10.

Multi-tenancy in Kubernetes
13 projects | dev.to | 10 Apr 2023

Kiosk
Dedicated backend resources per client
3 projects | /r/kubernetes | 17 Dec 2022

Have a look at https://github.com/loft-sh/kiosk and maybe the paid version https://loft.sh/
From Kubernetes to Plattform
1 project | /r/kubernetes | 2 Dec 2022

As for the open source projects, maybe you would find Kiosk for allowing self-service namespace creation, namespace templates and cross-namespace resource limits and quotas.
Space boxing user accounts with Kiosk
1 project | dev.to | 2 Jul 2022

# Install kiosk with helm v3 ❯ kubectl create namespace kiosk helm install kiosk --repo https://charts.devspace.sh/ kiosk --namespace kiosk --atomic namespace/kiosk created NAME: kiosk ... Learn more about using kiosk here: https://github.com/loft-sh/kiosk#getting-started #verify ❯ kubectl get pod -n kiosk NAME READY STATUS RESTARTS AGE kiosk-66dbfcf6db-5rfx2 1/1 Running 0 2m18s
Checklist for Platform Engineers
6 projects | dev.to | 16 Jun 2022

Kubernetes was designed as a single-tenant platform. Sharing clusters, though, offers greater flexibility, simplifies infrastructure, and improves cost-efficiency. Therefore, it makes sense to use a multi-tenant system. To keep tenants separate and prevent compromised tenants from affecting others, you can use role-based access control (RBAC) or namespaces. Tools that assist with multi-tenancy in Kubernetes include kiosk and loft.
User management qustion
3 projects | /r/kubernetes | 23 Oct 2021

For simple environments I'm using klum, for bigger environments I'm using OIDC with Keycloak. Beside that kiosk also looks interesting.
RBAC for developer self-service?
3 projects | /r/kubernetes | 29 Jun 2021

https://github.com/loft-sh/kiosk (from makers of loft)
Meet Rich Burroughs - Loft Blog
2 projects | /r/kubernetes | 5 Apr 2021

cluster-api-provider-nested

Posts with mentions or reviews of cluster-api-provider-nested. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2023-11-27.

Amazon EC2 Enhances Defense in Depth with Default IMDSv2
6 projects | news.ycombinator.com | 27 Nov 2023

Kubernetes has a lot of limitations from a multi tenancy perspective.
It's functional, but I think it's not as polished as the rest of Kubernetes which is why Kubernetes has a multi tenancy SIG that spawned the hierarchical namespace controller (https://github.com/kubernetes-sigs/hierarchical-namespaces) and virtual clusters (https://github.com/kubernetes-sigs/cluster-api-provider-nest...)
Multi-tenancy in Kubernetes
13 projects | dev.to | 10 Apr 2023

Virtual Cluster (wg-multitenancy)
Any projects to run Kubernetes inside Kubernetes?
6 projects | /r/kubernetes | 20 Jun 2022

Also https://github.com/kubernetes-sigs/cluster-api-provider-nested, similar approach to vcluster, but part of the K8s project.
cluster-api-provider-nested/virtualcluster at main · kubernetes-sigs/cluster-api-provider-nested
1 project | /r/devopsish | 31 May 2022
Kubernetes-in-Kubernetes and the WEDOS PXE bootable server farm
10 projects | /r/kubernetes | 23 Dec 2021
Introduction to Multi-Tenancy in Kubernetes
3 projects | dev.to | 9 Dec 2021

Approach C This approach provides a way to implement hard isolation among Kubernetes tenants who have no trust between them. This provides segregated master plane components for each tenant by creating a mini virtual cluster on the super Kubernetes cluster. Admins can also create custom resources in those virtual clusters as well. This is provided by projects like VirtualCluster and vCluster.

What are some alternatives?

When comparing kiosk and cluster-api-provider-nested you can also consider the following projects:

capsule - Multi-tenancy and policy-based framework for Kubernetes.

vcluster - vCluster - Create fully functional virtual Kubernetes clusters - Each vcluster runs inside a namespace of the underlying k8s cluster. It's cheaper than creating separate full-blown clusters and it offers better multi-tenancy and isolation than regular namespaces.

cluster-api-provider-kubevirt - Cluster API Provider for KubeVirt

loft - Namespace & Virtual Cluster Manager for Kubernetes - Lightweight Virtual Clusters, Self-Service Provisioning for Engineers and 70% Cost Savings with Sleep Mode

kamaji - Kamaji is the Hosted Control Plane Manager for Kubernetes.

Openshift Origin - Conformance test suite for OpenShift

cluster-api-provider-openstack

klum - Kubernetes Lazy User Manager

hierarchical-namespaces - Home of the Hierarchical Namespace Controller (HNC). Adds hierarchical policies and delegated creation to Kubernetes namespaces for improved in-cluster multitenancy.

sandbox-operator - A Kubernetes operator for creating isolated environments

cluster-api-provider-vsphere