capsule

capsule copied to clipboard

Support Any Additional resource

7

# Describe the feature I would like to have a generic approach on resources, which are created for each new namespace belonging to a tenant. The same behavior that `.spec.additionalRoleBindings`...

oliverbaehler

Tenant Metrics

15

# Describe the feature We would like to have more metrics being exported about the current tenant controlled by an operator. Some Metrics t hat would be helpful: - **Basic...

oliverbaehler

Leave the cluster admin to share secrets with tenant owners

4

# Describe the feature There are cases where the cluster admin wants to share secrets with the tenant owners. Such secrets can be used, for example, by tenant owners to...

bsctl

Use selectors instead of AllowedList for IngressClasses, StorageClasses, PriorityClasses

4

We are using a specific struct, `AllowedListSpec`: ```go type AllowedListSpec struct { Exact []string `json:"allowed,omitempty"` Regex string `json:"allowedRegex,omitempty"` } ``` to allow tenant users to use only specific IngressClasses, StorageClasses...

MaxFedotov

Support for API Priority and Fairness per tenant

3

# Describe the feature Kubernetes introduced the API Priority and Fairness (APF) feature [beta in k8s 1.20] to control the behaviour of the Kubernetes API server in an overload situation....

bsctl

Add an optional external admission controller to Capsule Operator

5

# Describe the feature Capsule implements its own set of Admission Controllers through the Dynamic Admission Controller, providing callbacks to add further validation or resource patching. Currently these admission controllers...

bsctl

Tenant Resource Quota admission controller doesn't block resources creation

10

# Bug description Tenant Resource Quota admission controller doesn't block resources creation # How to reproduce As cluster admin: ``` cmp~/Shared/capsule$ kubectl get tenants NAME NAMESPACE QUOTA NAMESPACE COUNT OWNER...

bsctl

Create capsulectl

11

A suggestion to have a capsule cli tool would be cool. # Describe the feature create a capsulectl cli tool to view, create, edit, delete tenants

donhighmsft

Improve documentation on Capsule Proxy

6

This issue tracks the need to add details about how to use Capsule Proxy, specifically a user guide. The guide could add details about how to communicate over the proxy,...

maxgio92

Introduce static analysis of operator RBAC

2

# Describe the feature The CI pipeline could integrate static security analysis on the (`Cluster`)`Roles` that the operator would run with. # What would the new user story look like?...

maxgio92