kubernetes-replicator
k8tz
kubernetes-replicator | k8tz | |
---|---|---|
3 | 5 | |
805 | 367 | |
1.9% | 3.0% | |
6.2 | 7.3 | |
18 days ago | 12 days ago | |
Go | Go | |
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
kubernetes-replicator
-
What if your Pods need to trust self-signed certificates?
I've built a small MutatingAdmissionWebhook controller [0] that handles this, via a pod annotation whose value is a secret with `ca.crt` inside, and it uses the (mostly) de facto standard openssl variables to configure the libraries, so that it works across pretty much everything I've tried it with off the shelf.
I build a bundle (though I may just move to trust-manager [1]) and replicate it into all namespaces with kubernetes-replicator [2], and then I can annotate any pod with
[0] https://github.com/microcumulus/ca-injector
[1] https://github.com/cert-manager/trust-manager
[2] https://github.com/mittwald/kubernetes-replicator
-
To anyone hosting in Kubernetes: Do you put all of your apps in one namespace (e.g., default), or one app per namespace?
Whichever way you go, I’ve successfully used this to replicate secrets: https://github.com/mittwald/kubernetes-replicator
- GitHub - mittwald/kubernetes-replicator: Kubernetes controller for synchronizing secrets & config maps across namespaces
k8tz
-
How do you keep timezone data up-to-date?
So far I came across k8tz, which could be a solution.
- k8tz: Kubernetes admission controller and a CLI tool to inject timezones into Pods and CronJobs
- k8tz is a kubernetes admission controller and a CLI tool to inject timezones into Pods and CronJobs!!
-
Mounting a file from existing container to another in same pod
i recently saw some interesting github project that use emptyDir volume that first mounts to an initContainer with script that copy files from the container to the emptyDir and after that you mount this emptyDir to your actual container. you can even mount specific files using subPath. the initContainer image is written in golang and it is conpiled in a way that it can run in empty container (FROM scratch). the binary is very small so there is no big overhead on the image size...
What are some alternatives?
KubernetesCRDOperator - A sample about Kubernetes controller which can work with CRD to implement Operator pattern.
botkube - An app that helps you monitor your Kubernetes cluster, debug critical deployments & gives recommendations for standard practices
aws-cloud-map-mcs-controller-for-k8s - K8s controller implementing Multi-Cluster Services API based on AWS Cloud Map.
gotway - ☸️ Cloud native API Gateway powered with in-redis cache
secrets-manager - A daemon to sync Vault secrets to Kubernetes secrets
skipper - An HTTP router and reverse proxy for service composition, including use cases like Kubernetes Ingress
kubed - 🛡️ Kubernetes Config Syncer (previously kubed) [Moved to: https://github.com/kubeops/config-syncer]
kube-httpcache - Varnish Reverse Proxy on Kubernetes
config-syncer - 🛡️ Kubernetes Config Syncer (previously kubed)
unfork - Kubectl plugin to find forked Helm Charts and other K8s resources and unfork them with Kustomize
sealed-secrets - A Kubernetes controller and tool for one-way encrypted Secrets
timezoneLookup - Timezone lookup API for GPS Coordinates based from GeoJSON