nullstone icon indicating copy to clipboard operation
nullstone copied to clipboard
verified publisher icon nullstone-io

Platform Policies

Open BSick7 opened this issue 2 years ago • 0 comments

Overview

Nullstone provides enormous flexibility for software teams. Some software teams want finer control over what their developers are able to do.

For example, some shops may be all-in on Kubernetes; ECS/Fargate may be off-limits for provisioning.

How will it work?

Platform Engineers can configure org-wide policies for module usage.

  • Allow/Disallow use of official Nullstone modules.
  • Allow/Disallow use of use community modules.
  • Whitelist/Blacklist of allowed modules

Stack Owners can provide policies for minimum app requirements.

  • Able to enforce logging provider on all apps. For example, every app uses Datadog.
  • Configure how many networks/clusters exist per stack.

Considerations

Do teams want to enforce policies per stack on which technologies are allowed (e.g. Lambda, Kubernetes, etc.)?

  • This could be done simply by allowing a stack admin to create a list of rules that define which module contracts are permitted.

BSick7 avatar Jul 18 '23 20:07 BSick7