Back To Schedule
Friday, December 8 • 11:55am - 12:30pm
Enforcing Bespoke Policies in Kubernetes [I] - Torin Sandall, Styra

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Kubernetes enables fully-automated, self-service management of large-scale, heterogenous deployments. These deployments are often managed by distributed engineering teams that have unique requirements for how the platform treats their workloads, but at the same time, they must conform to organization-wide constraints around cost, security, and performance. As Kubernetes matures, extensibility has become a critical feature that organizations can leverage to enforce their organization’s bespoke policies.

In this talk, Torin explains how to use extensibility features in Kubernetes (e.g., External Admission Control) to enforce custom policies over workloads. The talk shows how to build custom admission controllers using Initializers and Webhooks, and shows how the same features lay the groundwork for policy-based control through integration with third party policy engines like the Open Policy Agent project.

avatar for Torin Sandall

Torin Sandall

VP of Open Source, Styra
Torin Sandall is a co-founder of the Open Policy Agent (OPA) project. Torin has spent 10 years as a software engineer working on large-scale distributed systems projects. Torin is a frequent speaker at events like KubeCon, DockerCon, Velocity, and more. Prior to working on OPA, Torin... Read More →

Friday December 8, 2017 11:55am - 12:30pm CST
Meeting Room 12AB, Level 4