KubeWeekly #134

Published: May 23, 2018

Kubernetes

The Headlines

Editor’s picks of the highlights from the past week.

Hard Multi-Tenancy in Kubernetes (https://blog.jessfraz.com/post/hard-multi-tenancy-in-kubernetes/)
Jessie Frazelle, Microsoft

Kubernetes is the new kernel. This means a lot of great things for users trying to deploy applications, but also leads to a lot of the same challenges we have already faced with operating system kernels. One of which is privilege isolation, or multi-tenancy in Kubernetes. This post dives into “hard multi-tenancy” where multiple tenants in the same cluster should not have access to anything from other tenants.

A Local Kubernetes with microk8s (https://medium.com/@marcoceppi/a-local-kubernetes-with-microk8s-33ee31d1eed9)
Marco Ceppi, The Silph Road

Microk8s is designed to be a fast and lightweight upstream Kubernetes install isolated from your host but not via a virtual machine. This article walks through how to get started with microk8s to produce a clean deploy of the latest upstream Kubernetes on your local machine with little hassle or overhead.

Building Container Images Securely on Kubernetes (https://engineering.opsgenie.com/cloud-native-continuous-integration-and-delivery-tools-for-kubernetes-e6ea34d308c)
Mustafa Akine, OpsGenie

Cloud Native is a new approach to build and run applications that can leverage the cloud computing delivery model. A critical aspect of the modern development is Continuous Integration and Continuous Delivery. This blog post introduces the most promising CI and CD tools in the Cloud-Native landscape or in other words, pipeline tooling.
New Webinar: Linkerd Service Mesh in Production: Houghton Mifflin Harcourt

Robert Allen – Director of Engineering, Houghton Mifflin Harcourt
May 29 @ 10:00 am – 11:00 am PDT
REGISTER NOW » (https://www.cncf.io/event/webinar-linkerd-in-production/)

The Technical

Tutorials, tools, and more that take you on a deep dive into the code.

Gardener – The Kubernetes Botanist (https://kubernetes.io/blog/2018/05/17/gardener/)
Rafael Franzke & Vasu Chandrasekhara, SAP

Kubernetes best practices: terminating with grace (https://cloudplatform.googleblog.com/2018/05/Kubernetes-best-practices-terminating-with-grace.html)
Sandeep Dinesh, Google

PVC Operator; Creating Persistent Volume on Kubernetes made simple (https://banzaicloud.com/blog/pvc-operator/)
Balint Molnar, BanzaiCloud

Using nginx-ingress controller to restrict access by IP (ip whitelisting) for a service deployed to a Kubernetes (AKS) cluster (https://medium.com/@maninder.bindra/using-nginx-ingress-controller-to-restrict-access-by-ip-ip-whitelisting-for-a-service-deployed-to-bd5c86dc66d6)
Maninderjit Bindra, Microsoft

The whales practice floating on the water. Day 4: Kubernetes on the Raspberry Pi (https://medium.com/mr-efacani-teatime/%E9%AF%A8%E9%AD%9A%E6%B0%B4%E4%B8%8A%E9%A3%84%E7%9A%84%E4%BF%AE%E7%85%89-day-4-raspberry-pi%E4%B8%8A%E7%9A%84kubernetes-b9f60cbc5517)
James Shieh, efacani

Kubernetes: The Hard Way, Vagrant (https://github.com/kenfdev/kubernetes-the-hard-way-vagrant)
Ken Fukuyama, supersoftware

Kubernetes: Day One (https://medium.com/@jonbcampos/kubernetes-day-one-30a80b5dcb29)
Jonathan Campos, Bottle Rocket

What You Yaml is What You Get (https://blog.giantswarm.io/what-you-yaml-is-what-you-get/)
Tobias Bradtke, Giant Swarm

Kubernetes Chaos Engineering: Lessons Learned — Part 1 (https://learnk8s.io/blog/kubernetes-chaos-engineering-lessons-learned)
Daniele Polencic, learnk8s
https://twitter.com/antoniaklja/status/997836020631695364?ref_src=twsrc%5Etfw&ref_url=https%3A%2F%2Fkubeweekly.com%2F%3Fp%3D788%26preview_id%3D788%26preview_nonce%3Dbc255579bb%26post_format%3Dstandard%26_thumbnail_id%3D-1%26preview%3Dtrue

The Editorial

Articles, announcements, and more that give you a high-level overview of challenges and features.

CNCF To Host Telepresence in the Sandbox (https://www.cncf.io/blog/2018/05/22/telepresence-in-the-sandbox/)
Kristen Evans, CNCF

Google Kubernetes Engine 1.10 is generally available and ready for the enterprise (https://cloudplatform.googleblog.com/2018/05/Google-Kubernetes-Engine-1-10-is-generally-available-and-ready-for-the-enterprise.html)
Yoshi Tamura, GKE

Is K8s too complicated? (http://jmoiron.net/blog/is-k8s-too-complicated/)
Jason Moiron, Datadog

Introducing Shared VPC for Google Kubernetes Engine (https://cloudplatform.googleblog.com/2018/05/Introducing-Shared-VPC-for-Google-Kubernetes-Engine.html)
Manjot Pahwa, Google

Introducing KubeSquash: Remotely Debug your Kubernetes Pods (https://medium.com/solo-io/introducing-kubesquash-remotely-debug-your-kubernetes-pods-f3e3391eaf16)
Idit Levine, Gloo

Introducing Escalator, the Atlassian-developed auto-scaling tool for Kubernetes (https://developer.atlassian.com/blog/2018/05/introducing-escalator/)
Corey Johnson, Atlassian

Voyage across the Clouds with Kubernetes (https://blog.andyet.com/2018/05/17/voyage-across-the-clouds-with-k8s)
Heather Young, &Yet

Making Kubernetes work for the average engineer—via PaaS (https://www.infoworld.com/article/3273104/containers/making-kubernetes-work-for-the-average-engineer-via-paas.html)
Matt Asay, InfoWorld

Why Did Kubernetes Win? (https://dzone.com/articles/why-did-kubernetes-win)
Ryan Dawson, Alfresco

Kubernetes for the Spring Developer (https://www.infoq.com/presentations/kubernetes-spring)
Meaghan Kjelland, Google
https://twitter.com/majorhayden/status/998928399988084736?ref_src=twsrc%5Etfw&ref_url=https%3A%2F%2Fkubeweekly.com%2F%3Fp%3D788%26preview_id%3D788%26preview_nonce%3Dbc255579bb%26post_format%3Dstandard%26_thumbnail_id%3D-1%26preview%3Dtrue

============================================================

KubeWeekly is curated by ** Ryan Quackenbush (https://twitter.com/RSQuackenbush)
and ** Kaitlyn Barnard (https://twitter.com/kaitlyn_barnard)