Our great sponsors
-
vcluster
vCluster - Create fully functional virtual Kubernetes clusters - Each vcluster runs inside a namespace of the underlying k8s cluster. It's cheaper than creating separate full-blown clusters and it offers better multi-tenancy and isolation than regular namespaces.
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
porter
Porter enables you to package your application artifact, client tools, configuration and deployment logic together as an installer that you can distribute, and install with a single command. (by getporter)
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
For multi tenancy you could use this: https://github.com/clastix/capsule
Or even this for further isolation: https://www.vcluster.com
Also you depending on your use case, you could replace vault with a more gitops ready solution such as sealed secret: https://github.com/bitnami-labs/sealed-secrets
Seems like you are a platform team who wants to offer self-service experience to your customers to enable them to spin up services that they want. I would encourage you to take a look at our project KubePlus - https://github.com/cloud-ark/kubeplus It enables a platform team to create Kubernetes-style APIs (CRDs) from Helm charts. You can create APIs for each of the services that you want your product teams to instantiate (Prometheus, ELK, Vault, etc.). All you need is Helm chart for a service. Your product teams will use these APIs to instantiate the actual service. KubePlus takes care of multi-tenancy, monitoring, RBAC for service instances behind the scene. Will be happy to provide more details. Let me know.
Check https://cnab.io/ and https://porter.sh/
Check https://cnab.io/ and https://porter.sh/
Related posts
- Is it a good idea to use k8s namespace-based multitenancy for delivering managed service of an application?
- What is your experience with operators?
- Does anybody need a Kubernetes Operator for auto renewing SSL certificates?
- Feedback wanted on pod resource metrics before GA promotion
- Minikube VM. I’m having all sorts of trouble getting minikube to work. Does anyone know of a vm or lxc/LXD that is ready to go?