Source: lambda.grofers.com
Secure provisioning of LoadBalancer Services on Kubernetes using KyvernoCategory: Kubernetes
There are many ways by which Kubernetes allows you to expose applications (pods) to users. At Grofers, we like to allow our developers to do this without needing intervention from the DevOps team.
At the same time, we also want to ensure our developers don’t end up introducing any new security risks while provisioning LoadBalancer services. In this post, we’ll talk about how we augment the default provisioning process of Kubernetes LoadBalancers to suit those needs.
Let’s look at our policy specification line-by-line: As Kubernetes is deployed in organizations to enable more and more developers to deploy applications, governance, and security of Kubernetes clusters are becoming an area of concern.
At the same time, we also want to ensure our developers don’t end up introducing any new security risks while provisioning LoadBalancer services. In this post, we’ll talk about how we augment the default provisioning process of Kubernetes LoadBalancers to suit those needs.
Let’s look at our policy specification line-by-line: As Kubernetes is deployed in organizations to enable more and more developers to deploy applications, governance, and security of Kubernetes clusters are becoming an area of concern.
Related Articles
Community Partners
DevOps Careers