10:[["$","$L2a",null,{"props":{"lessonContent":{"components":[{"type":"SlateHTML","content":{"html":"

Security is more important than ever, and Kubernetes is no exception. Fortunately, there's a lot we can do to secure Kubernetes, and we'll see some ways in the next chapter. However, before doing that, it's a good idea to model some of the common threats. ...

","comp_id":"0xLEEB0D6QHcJTscDllxr"},"hash":0,"iteration":0}],"summary":{"description":"Get introduced to threat modeling in Kubernetes.","titleUpdated":true,"title":"Introduction to Threat Modeling"},"content":[{"type":"SlateHTML","content":{"html":"

","comp_id":"0xLEEB0D6QHcJTscDllxr"},"hash":0,"iteration":0}],"darkModeContent":[{"type":"SlateHTML","content":{"html":"

","comp_id":"0xLEEB0D6QHcJTscDllxr"},"hash":0,"iteration":0}]},"isPreviewLesson":false,"pageType":"collection_lesson","aiCoachVideoUrl":"https://youtu.be/kgl8y9J3O6c","collectionDetailsSSR":{"title":"Learn Kubernetes: A Deep Dive","summary":"The course covers key Kubernetes concepts, including pods, services, and deployments. Once you become proficient in these important areas, you will learn about Kubernetes architecture, building clusters, and deploying and managing applications. \n\nIn the last part of the course, you explore threat modeling and real-world security practices. By completing the course, you can effectively use Kubernetes in your projects.","details":"","clos":["An understanding of the key concepts of Kubernetes ","Working knowledge of pods, services, and deployments ","Familiarity with the core components of Kubernetes architecture","The ability to apply real-world security practices using Kubernetes"],"toc":{"categories":[{"editMode":false,"pages":[{"is_recovered":false,"editMode":false,"title":"Kubernetes Background","is_preview":false,"parentIndex":null,"id":4898508983238656,"type":"collection_lesson","slug":"kubernetes-background"},{"is_recovered":false,"editMode":false,"title":"Where Did Kubernetes Come From?","is_preview":true,"parentIndex":null,"id":6503562960961536,"type":"collection_lesson","slug":"where-did-kubernetes-come-from"},{"is_recovered":false,"editMode":false,"title":"The Operating System of the Cloud","is_preview":false,"parentIndex":null,"id":4844584195588096,"type":"collection_lesson","slug":"the-operating-system-of-the-cloud"},{"is_recovered":false,"editMode":false,"title":"Quiz: Kubernetes Primer","type":"collection_lesson","is_preview":false,"parentIndex":null,"collection_id":6445473125629952,"author_id":10370001,"page_id":6633923894312960,"id":6633923894312960,"slug":"quiz-kubernetes-primer"},{"is_recovered":false,"editMode":false,"title":"Summary: Kubernetes Primer","is_preview":false,"parentIndex":null,"id":5970484102430720,"type":"collection_lesson","slug":"summary-kubernetes-primer"}],"type":"COLLECTION_CATEGORY","id":"s0wlgsvl0","title":"Kubernetes Primer","summary":"Get familiar with Kubernetes’ origins, cloud-native management, and cross-environment deployment capabilities."},{"id":"1sasofijo","title":"Kubernetes Principles of Operation","type":"COLLECTION_CATEGORY","editMode":false,"pages":[{"is_recovered":false,"editMode":false,"title":"Kubernetes from 40K Feet","is_preview":true,"parentIndex":null,"id":4753739057463296,"type":"collection_lesson","slug":"kubernetes-from-40k-feet"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Control Plane and Nodes: Control Plane","parentIndex":null,"id":5315846861750272,"type":"collection_lesson","slug":"control-plane-and-nodes-control-plane"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Control Plane and Nodes: Worker Nodes","parentIndex":null,"id":5224200849588224,"type":"collection_lesson","slug":"control-plane-and-nodes-worker-nodes"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Packaging Apps for Kubernetes","parentIndex":null,"id":6192842612408320,"type":"collection_lesson","slug":"packaging-apps-for-kubernetes"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"The Declarative Model and the Desired State","parentIndex":null,"id":6350100756430848,"type":"collection_lesson","slug":"the-declarative-model-and-the-desired-state"},{"is_recovered":false,"editMode":false,"is_preview":true,"title":"Pods","parentIndex":null,"id":5951419682127872,"type":"collection_lesson","slug":"pods"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Deployments","parentIndex":null,"id":5922530386771968,"type":"collection_lesson","slug":"deployments"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Quiz: Kubernetes Principles","parentIndex":null,"id":6570519924047872,"type":"collection_lesson","slug":"quiz-kubernetes-principles"},{"is_recovered":false,"editMode":false,"title":"Summary: Kubernetes Principles","is_preview":false,"parentIndex":null,"id":4915922696404992,"type":"collection_lesson","slug":"summary-kubernetes-principles"}],"summary":"Discover Kubernetes’ architecture, including its control plane, worker nodes, Pods, and declarative management."},{"editMode":false,"pages":[{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Local Kubernetes Cluster","parentIndex":null,"id":4594171023196160,"type":"collection_lesson","slug":"local-kubernetes-cluster"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Hosted Kubernetes Cluster","parentIndex":null,"id":4643471946153984,"type":"collection_lesson","slug":"hosted-kubernetes-cluster"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Working with kubectl","parentIndex":null,"id":5385440837238784,"type":"collection_lesson","slug":"working-with-kubectl"},{"is_recovered":false,"editMode":false,"title":"Summary: Getting Kubernetes","is_preview":false,"parentIndex":null,"id":4606552947294208,"type":"collection_lesson","slug":"summary-getting-kubernetes"}],"type":"COLLECTION_CATEGORY","id":"yds2fy22p","title":"Getting Kubernetes","summary":"Break apart the setup of Kubernetes clusters locally and through hosted services, and utilize kubectl."},{"id":"9zde845op","title":"Working With Pods: Theory","type":"COLLECTION_CATEGORY","editMode":false,"pages":[{"is_recovered":false,"editMode":false,"title":"Pod Theory","is_preview":false,"parentIndex":null,"id":6090578400903168,"type":"collection_lesson","slug":"pod-theory"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":5941183415451648,"id":5941183415451648,"title":"Pods and Scheduling","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"pods-and-scheduling"},{"is_recovered":false,"editMode":false,"title":"Pod Life Cycle","is_preview":false,"parentIndex":null,"id":6179049224273920,"type":"collection_lesson","slug":"pod-life-cycle"},{"is_recovered":false,"editMode":false,"title":"How Do We Deploy Pods?","is_preview":false,"parentIndex":null,"id":6021328361488384,"type":"collection_lesson","slug":"how-do-we-deploy-pods"},{"is_recovered":false,"editMode":false,"title":"Multi-Container Pods: Init Containers","is_preview":false,"parentIndex":null,"id":6159039072305152,"type":"collection_lesson","slug":"multi-container-pods-init-containers"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Quiz: Theory of Working with Pods","parentIndex":null,"id":5503329435123712,"type":"collection_lesson","slug":"quiz-theory-of-working-with-pods"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Summary: Theory of Working with Pods","parentIndex":null,"id":6533879289610240,"type":"collection_lesson","slug":"summary-theory-of-working-with-pods"}],"summary":"Grasp the fundamentals of Kubernetes Pods, their life cycle, scheduling, and deployment methods."},{"editMode":false,"pages":[{"is_recovered":false,"editMode":false,"title":"Pod Manifest Files","is_preview":false,"parentIndex":null,"id":6697243202551808,"type":"collection_lesson","slug":"pod-manifest-files"},{"is_recovered":false,"editMode":false,"title":"Manifest Files: Empathy as Code","is_preview":false,"parentIndex":null,"id":6409887912296448,"type":"collection_lesson","slug":"manifest-files-empathy-as-code"},{"is_recovered":false,"editMode":false,"title":"Introspecting Pods","is_preview":false,"parentIndex":null,"id":5873104443146240,"type":"collection_lesson","slug":"introspecting-pods"},{"is_recovered":false,"editMode":false,"title":"kubectl exec: Running Commands in Pods","is_preview":false,"parentIndex":null,"id":4607032440127488,"type":"collection_lesson","slug":"kubectl-exec-running-commands-in-pods"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":6537487992619008,"id":6537487992619008,"title":"Check Pod Immutability","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"check-pod-immutability"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":5986205871505408,"id":5986205871505408,"title":"Multi-Container Pod Example: Init Container","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"multi-container-pod-example-init-container"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":5254419008847872,"id":5254419008847872,"title":"Multi-Container Pod Example: Sidecar Container","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"multi-container-pod-example-sidecar-container"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Quiz: Working Hands-On with Pods","parentIndex":null,"id":6034185010544640,"type":"collection_lesson","slug":"quiz-working-hands-on-with-pods"},{"is_recovered":false,"editMode":false,"title":"Summary: Working Hands-On with Pods","is_preview":false,"parentIndex":null,"id":5372184991105024,"type":"collection_lesson","slug":"summary-working-hands-on-with-pods"}],"type":"COLLECTION_CATEGORY","id":"drpr7tji2","title":"Working with Pods: Hands-On","summary":"Solve problems in defining, deploying, and managing Kubernetes Pods using practical tools and commands."},{"id":"q1nejmm2y","title":"Virtual Clusters with Namespaces","pages":[{"author_id":10370001,"collection_id":6445473125629952,"page_id":6578127862366208,"id":6578127862366208,"title":"Namespaces","is_preview":false,"parentIndex":null,"editMode":true,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"namespaces"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":6035041528709120,"id":6035041528709120,"title":"Namespace Use Cases","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"namespace-use-cases"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":4525315896770560,"id":4525315896770560,"title":"Default Namespaces","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"default-namespaces"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":4510889084846080,"id":4510889084846080,"title":"Creating and Managing Namespaces","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"creating-and-managing-namespaces"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":5141229021298688,"id":5141229021298688,"title":"Deploying Objects to Namespaces","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"deploying-objects-to-namespaces"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":5404176784162816,"id":5404176784162816,"title":"Quiz: Virtual Clusters with Namespaces","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"quiz-virtual-clusters-with-namespaces"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":5395767439523840,"id":5395767439523840,"title":"Summary: Virtual Clusters with Namespaces","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"summary-virtual-clusters-with-namespaces"}],"editMode":false,"type":"COLLECTION_CATEGORY","summary":"Learn how Kubernetes namespaces works to organize and manage cluster resources."},{"id":"3h32gltyh","title":"Kubernetes Deployments","type":"COLLECTION_CATEGORY","editMode":false,"pages":[{"is_recovered":false,"editMode":false,"title":"Deployment Theory","is_preview":true,"parentIndex":null,"id":6140653961478144,"type":"collection_lesson","slug":"deployment-theory"},{"is_recovered":false,"editMode":false,"title":"ReplicaSets and Scaling","is_preview":false,"parentIndex":null,"id":5577704008056832,"type":"collection_lesson","slug":"replicasets-and-scaling"},{"is_recovered":false,"editMode":false,"title":"Rolling Updates with Deployments","is_preview":false,"parentIndex":null,"id":6703603914899456,"type":"collection_lesson","slug":"rolling-updates-with-deployments"},{"is_recovered":false,"editMode":false,"title":"How to Create a Deployment","is_preview":false,"parentIndex":null,"id":5545220633526272,"type":"collection_lesson","slug":"how-to-create-a-deployment"},{"is_recovered":false,"editMode":false,"title":"Accessing Deployments","is_preview":false,"parentIndex":null,"id":5621636691656704,"type":"collection_lesson","slug":"accessing-deployments"},{"is_recovered":false,"editMode":false,"title":"Accessing the Apps","is_preview":false,"parentIndex":null,"id":4557357217480704,"type":"collection_lesson","slug":"accessing-the-apps"},{"is_recovered":false,"editMode":false,"title":"Performing a Rolling Update","is_preview":false,"parentIndex":null,"id":5908854207414272,"type":"collection_lesson","slug":"performing-a-rolling-update"},{"is_recovered":false,"editMode":false,"title":"How to Perform a Rollback","is_preview":false,"parentIndex":null,"id":6199745228832768,"type":"collection_lesson","slug":"how-to-perform-a-rollback"},{"is_recovered":false,"editMode":false,"title":"Quiz: Kubernetes Deployments","is_preview":false,"parentIndex":null,"id":6294721535148032,"type":"collection_lesson","slug":"quiz-kubernetes-deployments"},{"is_recovered":false,"editMode":false,"title":"Summary Kubernetes Deployments","is_preview":false,"parentIndex":null,"id":5029839724609536,"type":"collection_lesson","slug":"summary-kubernetes-deployments"}],"summary":"Master Kubernetes Deployments for scalable, self-healing, rolling updates, and easy rollbacks."},{"page_id":5726993315790848,"id":4511989746237440,"title":"Deploying a Web Application over Kubernetes","pages":[],"editMode":false,"type":"PATH_EXTERNAL_PROJECT","author_id":10370001,"collection_id":4736195994583040,"is_required":false,"detail_id":"project_10370001_4736195994583040_5726993315790848","cover_image_serving_url":null,"collection_read_time":0,"page_count":0,"brief_summary":null,"course_url_slug":null,"assessments_keys":[],"projects_keys":[],"optional_lessons":[],"time_limit":null},{"editMode":false,"pages":[{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Introduction to Services","parentIndex":null,"id":4989011866157056,"type":"collection_lesson","slug":"introduction-to-services"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Labels and Loose Coupling","parentIndex":null,"id":6668148423000064,"type":"collection_lesson","slug":"labels-and-loose-coupling"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Services and Endpoints Objects","parentIndex":null,"id":6540444985982976,"type":"collection_lesson","slug":"services-and-endpoints-objects"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Accessing Apps from Inside the Cluster","parentIndex":null,"id":5760922615283712,"type":"collection_lesson","slug":"accessing-apps-from-inside-the-cluster"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Accessing Apps from Outside the Cluster","parentIndex":null,"id":4824395164942336,"type":"collection_lesson","slug":"accessing-apps-from-outside-the-cluster"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Quiz: Theory of Kubernetes Services","parentIndex":null,"id":4902209335590912,"type":"collection_lesson","slug":"quiz-theory-of-kubernetes-services"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Summary: Theory of Kubernetes Services","parentIndex":null,"id":5190404795269120,"type":"collection_lesson","slug":"summary-theory-of-kubernetes-services"}],"type":"COLLECTION_CATEGORY","id":"8x8ej2ckm","title":"Kubernetes Services: Theory","summary":"Learn how Kubernetes Services provides stable network endpoints, internal and external access, and pod traffic distribution."},{"editMode":false,"pages":[{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Create a Service—The Imperative Way","parentIndex":null,"id":5938537665921024,"type":"collection_lesson","slug":"create-a-service-the-imperative-way"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Create a Service—The Declarative Way","parentIndex":null,"id":6155318489776128,"type":"collection_lesson","slug":"create-a-service-the-declarative-way"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Introspecting Services and Endpoint Objects","parentIndex":null,"id":5471879771979776,"type":"collection_lesson","slug":"introspecting-services-and-endpoint-objects"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Quiz: Hands-On with Kubernetes Services","parentIndex":null,"id":5420895288950784,"type":"collection_lesson","slug":"quiz-hands-on-with-kubernetes-services"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Summary: Hands-On with Kubernetes Services","parentIndex":null,"id":6483868052881408,"type":"collection_lesson","slug":"summary-hands-on-with-kubernetes-services"}],"type":"COLLECTION_CATEGORY","id":"ut1aghe1g","title":"Kubernetes Services: Hands-On","summary":"Get started with Kubernetes Services for stable networking and load balancing."},{"id":"0p7h174pk","title":"Ingress","pages":[{"author_id":10370001,"collection_id":6445473125629952,"page_id":5251353303973888,"id":5251353303973888,"title":"Setting the Scene for Ingress","is_preview":false,"parentIndex":null,"editMode":true,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"setting-the-scene-for-ingress"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":4791642284752896,"id":4791642284752896,"title":"Ingress Architecture","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"ingress-architecture"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":5168625824956416,"id":5168625824956416,"title":"Working with NGINX Controller","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"working-with-nginx-controller"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":6487599242149888,"id":6487599242149888,"title":"Configure Host-Based and Path-Based Routing","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"configure-host-based-and-path-based-routing"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":5352710270746624,"id":5352710270746624,"title":"Inspecting Ingress Objects","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"inspecting-ingress-objects"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":5288797365731328,"id":5288797365731328,"title":"Quiz: Ingress","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"quiz-ingress"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":4917301787099136,"id":4917301787099136,"title":"Summary: Ingress","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"summary-ingress"}],"editMode":false,"type":"COLLECTION_CATEGORY","summary":"Master the steps to efficiently manage traffic using Kubernetes ingress for robust routing."},{"id":"qp5xfprof","title":"WebAssembly on Kubernetes","pages":[{"author_id":10370001,"collection_id":6445473125629952,"page_id":5243460647256064,"id":5243460647256064,"title":"WebAssembly Primer","is_preview":false,"parentIndex":null,"editMode":true,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"webassembly-primer"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":6138671971827712,"id":6138671971827712,"title":"Wasm on Kubernetes","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"wasm-on-kubernetes"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":5461421647593472,"id":5461421647593472,"title":"Build and Prepare the Wasm App","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"build-and-prepare-the-wasm-app"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":5497498953449472,"id":5497498953449472,"title":"Build and Configure Kubernetes for Wasm","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"build-and-configure-kubernetes-for-wasm"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":4592952098029568,"id":4592952098029568,"title":"Deploy and Test the App","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"deploy-and-test-the-app"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":6472185611157504,"id":6472185611157504,"title":"Quiz: WebAssembly on Kubernetes","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"quiz-webassembly-on-kubernetes"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":6604468859043840,"id":6604468859043840,"title":"Summary: WebAssembly on Kubernetes","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"summary-webassembly-on-kubernetes"}],"editMode":false,"type":"COLLECTION_CATEGORY","summary":"Grasp the fundamentals of running lightweight and portable WebAssembly applications on Kubernetes."},{"id":"wxdbc7lfb","title":"Service Discovery: Deep Dive","type":"COLLECTION_CATEGORY","editMode":false,"pages":[{"is_recovered":false,"editMode":false,"title":"Understanding Service Discovery","type":"collection_lesson","is_preview":false,"parentIndex":null,"collection_id":6445473125629952,"author_id":10370001,"page_id":4962499370680320,"id":4962499370680320,"slug":"understanding-service-discovery"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":6357034903928832,"id":6357034903928832,"title":"The Service Registry","is_preview":false,"parentIndex":null,"editMode":true,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"the-service-registry"},{"is_recovered":false,"editMode":false,"title":"Service Registration","type":"collection_lesson","is_preview":false,"parentIndex":null,"collection_id":6445473125629952,"author_id":10370001,"page_id":4750963205210112,"id":4750963205210112,"slug":"service-registration"},{"is_recovered":false,"editMode":false,"title":"Service Discovery","type":"collection_lesson","is_preview":false,"parentIndex":null,"collection_id":6445473125629952,"author_id":10370001,"page_id":5141290537713664,"id":5141290537713664,"slug":"service-discovery-JPzV4R79owy"},{"is_recovered":false,"editMode":false,"title":"Service Discovery and Namespaces","type":"collection_lesson","is_preview":false,"parentIndex":null,"collection_id":6445473125629952,"author_id":10370001,"page_id":6406333258530816,"id":6406333258530816,"slug":"service-discovery-and-namespaces"},{"is_recovered":false,"editMode":false,"title":"Troubleshooting Service Discovery","type":"collection_lesson","is_preview":false,"parentIndex":null,"collection_id":6445473125629952,"author_id":10370001,"page_id":6576140830375936,"id":6576140830375936,"slug":"troubleshooting-service-discovery"},{"is_recovered":false,"editMode":false,"is_preview":false,"page_id":5632351328534528,"title":"Quiz: Service Discovery","parentIndex":null,"collection_id":6445473125629952,"author_id":10370001,"type":"collection_lesson","id":5632351328534528,"slug":"quiz-service-discovery"},{"is_recovered":false,"editMode":false,"is_preview":false,"page_id":6412073079668736,"title":"Summary: Service Discovery","parentIndex":null,"collection_id":6445473125629952,"author_id":10370001,"type":"collection_lesson","id":6412073079668736,"slug":"summary-service-discovery"}],"summary":"Dig into Kubernetes' automated service discovery and registration, ensuring seamless app communication."},{"id":"5iujkvyxu","title":"Kubernetes Storage","type":"COLLECTION_CATEGORY","editMode":false,"pages":[{"is_recovered":false,"editMode":false,"title":"The Big Picture","is_preview":false,"parentIndex":null,"id":4528456281882624,"type":"collection_lesson","slug":"the-big-picture"},{"is_recovered":false,"editMode":false,"title":"Storage Providers and Container Storage Interface","is_preview":false,"parentIndex":null,"id":6403710373593088,"type":"collection_lesson","slug":"storage-providers-and-container-storage-interface"},{"is_recovered":false,"editMode":false,"title":"The Kubernetes Persistent Volume Subsystem","is_preview":false,"parentIndex":null,"id":4770615799054336,"type":"collection_lesson","slug":"the-kubernetes-persistent-volume-subsystem"},{"is_recovered":false,"editMode":false,"title":"Storage Classes and Dynamic Provisioning","is_preview":false,"parentIndex":null,"id":5876334594097152,"type":"collection_lesson","slug":"storage-classes-and-dynamic-provisioning"},{"is_recovered":false,"editMode":false,"title":"Provision Volume Using an Existing StorageClass","is_preview":false,"parentIndex":null,"id":4683610364837888,"type":"collection_lesson","slug":"provision-volume-using-an-existing-storageclass"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":6038436209623040,"id":6038436209623040,"title":"Provision Volume by Creating a New StorageClass","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"provision-volume-by-creating-a-new-storageclass"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Quiz: Kubernetes Storage","parentIndex":null,"id":5010985153724416,"type":"collection_lesson","slug":"quiz-kubernetes-storage"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Summary: Kubernetes Storage","parentIndex":null,"id":4564699162083328,"type":"collection_lesson","slug":"summary-kubernetes-storage"}],"summary":"Tackle Kubernetes storage management, utilizing persistent volumes, dynamic provisioning, and various storage classes."},{"id":"o2lril0ol","title":"ConfigMaps","type":"COLLECTION_CATEGORY","editMode":false,"pages":[{"is_recovered":false,"editMode":false,"title":"Introduction to ConfigMaps","is_preview":false,"parentIndex":null,"id":6181484571394048,"type":"collection_lesson","slug":"introduction-to-configmaps"},{"is_recovered":false,"editMode":false,"title":"ConfigMap Theory","is_preview":false,"parentIndex":null,"id":5825053825433600,"type":"collection_lesson","slug":"configmap-theory"},{"is_recovered":false,"editMode":false,"title":"Hands-On: Creating ConfigMaps Imperatively","is_preview":false,"parentIndex":null,"id":6069288013135872,"type":"collection_lesson","slug":"hands-on-creating-configmaps-imperatively"},{"is_recovered":false,"editMode":false,"title":"Hands-On: Creating ConfigMaps Declaratively","is_preview":false,"parentIndex":null,"id":5538935351541760,"type":"collection_lesson","slug":"hands-on-creating-configmaps-declaratively"},{"is_recovered":false,"editMode":false,"title":"Injecting ConfigMap and Secret Data into Pods and Containers","is_preview":false,"parentIndex":null,"id":4869493865054208,"type":"collection_lesson","slug":"injecting-configmap-and-secret-data-into-pods-and-containers"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":5176742365233152,"id":5176742365233152,"title":"Hands-On with Secrets","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"hands-on-with-secrets"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Quiz: ConfigMaps","parentIndex":null,"id":4575772359524352,"type":"collection_lesson","slug":"quiz-configmaps"},{"is_recovered":false,"editMode":false,"title":"Summary: ConfigMaps","is_preview":false,"parentIndex":null,"id":5506338059714560,"type":"collection_lesson","slug":"summary-configmaps"}],"summary":"Master the use of ConfigMaps for dynamic configuration in Kubernetes environments."},{"page_id":5306036856029184,"id":5739815912734720,"title":"Deploy a Full Stack Web Application over Kubernetes","pages":[],"editMode":false,"type":"PATH_EXTERNAL_PROJECT","author_id":10370001,"collection_id":4961931122704384,"is_required":false,"detail_id":"project_10370001_4961931122704384_5306036856029184","cover_image_serving_url":null,"collection_read_time":0,"page_count":0,"brief_summary":null,"course_url_slug":null,"assessments_keys":[],"projects_keys":[],"optional_lessons":[],"time_limit":null},{"id":"atihah3ld","title":"StatefulSets","type":"COLLECTION_CATEGORY","editMode":false,"pages":[{"is_recovered":false,"editMode":false,"title":"Introduction to StatefulSets","type":"collection_lesson","is_preview":false,"parentIndex":null,"collection_id":6445473125629952,"author_id":10370001,"page_id":4798463328911360,"id":4798463328911360,"slug":"introduction-to-statefulsets"},{"is_recovered":false,"editMode":false,"title":"Ordered Creation and Deletion","type":"collection_lesson","is_preview":false,"parentIndex":null,"collection_id":6445473125629952,"author_id":10370001,"page_id":4655426472771584,"id":4655426472771584,"slug":"ordered-creation-and-deletion"},{"is_recovered":false,"editMode":false,"title":"Volumes and Handling Failures","type":"collection_lesson","is_preview":false,"parentIndex":null,"collection_id":6445473125629952,"author_id":10370001,"page_id":5641207970529280,"id":5641207970529280,"slug":"volumes-and-handling-failures"},{"is_recovered":false,"editMode":false,"title":"Network and Headless Services","type":"collection_lesson","is_preview":false,"parentIndex":null,"collection_id":6445473125629952,"author_id":10370001,"page_id":4562983693844480,"id":4562983693844480,"slug":"network-and-headless-services"},{"is_recovered":false,"editMode":false,"title":"Hands-On with StatefulSets","type":"collection_lesson","is_preview":false,"parentIndex":null,"collection_id":6445473125629952,"author_id":10370001,"page_id":6370417601150976,"id":6370417601150976,"slug":"hands-on-with-statefulsets"},{"is_recovered":false,"editMode":false,"title":"Creating a Governing Headless Service","type":"collection_lesson","is_preview":false,"parentIndex":null,"collection_id":6445473125629952,"author_id":10370001,"page_id":6239823265267712,"id":6239823265267712,"slug":"creating-a-governing-headless-service"},{"is_recovered":false,"editMode":false,"title":"Deploy the StatefulSet","type":"collection_lesson","is_preview":false,"parentIndex":null,"collection_id":6445473125629952,"author_id":10370001,"page_id":5927077655085056,"id":5927077655085056,"slug":"deploy-the-statefulset"},{"is_recovered":false,"editMode":false,"title":"Testing Peer Discovery","type":"collection_lesson","is_preview":false,"parentIndex":null,"collection_id":6445473125629952,"author_id":10370001,"page_id":6699439208005632,"id":6699439208005632,"slug":"testing-peer-discovery"},{"is_recovered":false,"editMode":false,"title":"Scaling StatefulSets","type":"collection_lesson","is_preview":false,"parentIndex":null,"collection_id":6445473125629952,"author_id":10370001,"page_id":4649656939184128,"id":4649656939184128,"slug":"scaling-statefulsets"},{"is_recovered":false,"editMode":false,"title":"Test a Pod Failure","type":"collection_lesson","is_preview":false,"parentIndex":null,"collection_id":6445473125629952,"author_id":10370001,"page_id":5373842649251840,"id":5373842649251840,"slug":"test-a-pod-failure"},{"is_recovered":false,"editMode":false,"title":"Quiz: StatefulSets","type":"collection_lesson","is_preview":false,"parentIndex":null,"collection_id":6445473125629952,"author_id":10370001,"page_id":5439039833374720,"id":5439039833374720,"slug":"quiz-statefulsets"},{"is_recovered":false,"editMode":false,"title":"Summary: StatefulSets","type":"collection_lesson","is_preview":false,"parentIndex":null,"collection_id":6445473125629952,"author_id":10370001,"page_id":5880606561927168,"id":5880606561927168,"slug":"summary-statefulsets"}],"summary":"Learn how to use StatefulSets for managing and scaling stateful applications in Kubernetes."},{"id":"3llg6wgug","title":"API Security and RBAC","pages":[{"author_id":10370001,"collection_id":6445473125629952,"page_id":4821380099342336,"id":4821380099342336,"title":"API Security Big Picture","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"api-security-big-picture"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":5017443343138816,"id":5017443343138816,"title":"Authentication","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"authentication"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":6643144903229440,"id":6643144903229440,"title":"Authorization (RBAC)","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"authorization-rbac"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":6532241331453952,"id":6532241331453952,"title":"Cluster-Level Users and Permissions","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"cluster-level-users-and-permissions"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":5723910903824384,"id":5723910903824384,"title":"Admission Control","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"admission-control"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":5120299723259904,"id":5120299723259904,"title":"Quiz: API Security and RBAC","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"quiz-api-security-and-rbac"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":4820845375913984,"id":4820845375913984,"title":"Summary: API Security and RBAC","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"summary-api-security-and-rbac"}],"editMode":false,"type":"COLLECTION_CATEGORY","summary":"Walk through securing Kubernetes API requests via authentication, authorization, and admission control."},{"id":"5gzentrqt","title":"Kubernetes API ","pages":[{"author_id":10370001,"collection_id":6445473125629952,"page_id":5601904204054528,"id":5601904204054528,"title":"Introduction to Kubernetes API","is_preview":false,"parentIndex":null,"editMode":true,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"introduction-to-kubernetes-api"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":4629128169259008,"id":4629128169259008,"title":"API Analogy","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"api-analogy"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":5626127148515328,"id":5626127148515328,"title":"The API Server","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"the-api-server"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":5786324529709056,"id":5786324529709056,"title":"A Word on CRUD","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"a-word-on-crud"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":5683712190971904,"id":5683712190971904,"title":"The API","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"the-api"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":5005803377786880,"id":5005803377786880,"title":"Inspecting the API","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"inspecting-the-api"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":6057708195545088,"id":6057708195545088,"title":"Alpha, Beta, and Stable","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"alpha-beta-and-stable"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":4883082622926848,"id":4883082622926848,"title":"Quiz: Kubernetes API","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"quiz-kubernetes-api"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":6528673388036096,"id":6528673388036096,"title":"Summary: Kubernetes API","is_preview":false,"parentIndex":null,"editMode":false,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"summary-kubernetes-api"}],"editMode":false,"type":"COLLECTION_CATEGORY","summary":"Examine the central role of Kubernetes API, resource management, CRUD operations, and API extensibility."},{"editMode":false,"pages":[{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Introduction to Threat Modeling","parentIndex":null,"id":6708870652100608,"type":"collection_lesson","slug":"introduction-to-threat-modeling"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Spoofing","parentIndex":null,"id":5616238186201088,"type":"collection_lesson","slug":"spoofing"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Tampering","parentIndex":null,"id":5590578038308864,"type":"collection_lesson","slug":"tampering"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Repudiation","parentIndex":null,"id":4862729559998464,"type":"collection_lesson","slug":"repudiation"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Information Disclosure","parentIndex":null,"id":4948867511484416,"type":"collection_lesson","slug":"information-disclosure"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Denial-of-Service","parentIndex":null,"id":4539774728667136,"type":"collection_lesson","slug":"denial-of-service"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Elevation of Privilege","parentIndex":null,"id":6171315632340992,"type":"collection_lesson","slug":"elevation-of-privilege"},{"is_recovered":false,"editMode":false,"is_preview":false,"page_id":5305498176847872,"title":"Protecting Pods","parentIndex":null,"collection_id":6445473125629952,"author_id":10370001,"type":"collection_lesson","id":5305498176847872,"slug":"protecting-pods"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Pod Security Admission","parentIndex":null,"id":6306953350348800,"type":"collection_lesson","slug":"pod-security-admission"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Quiz: Threat Modeling Kubernetes","parentIndex":null,"id":5290412840321024,"type":"collection_lesson","slug":"quiz-threat-modeling-kubernetes"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Summary: Threat Modeling Kubernetes","parentIndex":null,"id":5608365678919680,"type":"collection_lesson","slug":"summary-threat-modeling-kubernetes"}],"type":"COLLECTION_CATEGORY","id":"5me7as47v","title":"Threat Modeling Kubernetes","summary":"Grasp the fundamentals of Kubernetes security by exploring threat modeling and mitigation strategies using the STRIDE framework."},{"id":"6rydiodfr","title":"Real-World Kubernetes Security","type":"COLLECTION_CATEGORY","editMode":false,"pages":[{"is_recovered":false,"editMode":false,"title":"CI/CD Pipeline","is_preview":false,"parentIndex":null,"id":4969790176231424,"type":"collection_lesson","slug":"ci-cd-pipeline"},{"is_recovered":false,"editMode":false,"title":"Moving Images From Non-Production to Production","is_preview":false,"parentIndex":null,"type":"collection_lesson","id":6243784114307072,"slug":"moving-images-from-non-production-to-production"},{"is_recovered":false,"editMode":false,"title":"Workload Isolation","is_preview":false,"parentIndex":null,"id":5386648964562944,"type":"collection_lesson","slug":"workload-isolation"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Identity and Access Management (IAM)","parentIndex":null,"id":5531865164283904,"type":"collection_lesson","slug":"identity-and-access-management-iam"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Auditing and Security Monitoring","parentIndex":null,"id":5609888211271680,"type":"collection_lesson","slug":"auditing-and-security-monitoring"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Quiz: Real-World Kubernetes Security","parentIndex":null,"id":5129053636919296,"type":"collection_lesson","slug":"quiz-real-world-kubernetes-security"},{"is_recovered":false,"editMode":false,"is_preview":false,"title":"Summary: Real-World Kubernetes Security","parentIndex":null,"id":4602495042060288,"type":"collection_lesson","slug":"summary-real-world-kubernetes-security"}],"summary":"Dig into Kubernetes security, focusing on CI/CD pipelines, workload isolation, IAM, and auditing."},{"id":"7abuhkxv4","title":"Conclusion","type":"COLLECTION_CATEGORY","editMode":false,"pages":[{"is_recovered":false,"editMode":false,"title":"Glossary","type":"collection_lesson","is_preview":false,"parentIndex":null,"collection_id":6445473125629952,"author_id":10370001,"page_id":6349481497853952,"id":6349481497853952,"slug":"glossary"},{"author_id":10370001,"collection_id":6445473125629952,"page_id":4859922632540160,"id":4859922632540160,"title":"Wrap Up","is_preview":false,"parentIndex":null,"editMode":true,"is_recovered":false,"type":"collection_lesson","can_edit":false,"is_standalone_module":false,"is_cloned":false,"brief_summary":"","slug":"wrap-up"}],"summary":"Follow the process of Kubernetes terms and key practices to manage environments."}]},"page_titles":{"5922530386771968":"Deployments","4602495042060288":"Summary: Real-World Kubernetes Security","6533879289610240":"Summary: Theory of Working with Pods","5608365678919680":"Summary: Threat Modeling Kubernetes","5873104443146240":"Introspecting Pods","4655426472771584":"Ordered Creation and Deletion","6699439208005632":"Testing Peer Discovery","6409887912296448":"Manifest Files: Empathy as Code","5373842649251840":"Test a Pod Failure","5129053636919296":"Quiz: Real-World Kubernetes Security","4594171023196160":"Local Kubernetes Cluster","5538935351541760":"Hands-On: Creating ConfigMaps Declaratively","4528456281882624":"The Big Picture","4770615799054336":"The Kubernetes Persistent Volume Subsystem","4969790176231424":"CI/CD Pipeline","6069288013135872":"Hands-On: Creating ConfigMaps Imperatively","4824395164942336":"Accessing Apps from Outside the Cluster","4564699162083328":"Summary: Kubernetes Storage","6181484571394048":"Introduction to ConfigMaps","6576140830375936":"Troubleshooting Service Discovery","6034185010544640":"Quiz: Working Hands-On with Pods","5927077655085056":"Deploy the StatefulSet","5970484102430720":"Summary: Kubernetes Primer","5951419682127872":"Pods","6294721535148032":"Quiz: Kubernetes Deployments","6406333258530816":"Service Discovery and Namespaces","4750963205210112":"Service Registration","6570519924047872":"Quiz: Kubernetes Principles","4902209335590912":"Quiz: Theory of Kubernetes Services","5420895288950784":"Quiz: Hands-On with Kubernetes Services","5760922615283712":"Accessing Apps from Inside the Cluster","6306953350348800":"Pod Security Admission","5938537665921024":"Create a Service—The Imperative Way","4962499370680320":"Understanding Service Discovery","4539774728667136":"Denial-of-Service","4915922696404992":"Summary: Kubernetes Principles","5577704008056832":"ReplicaSets and Scaling","5506338059714560":"Summary: ConfigMaps","5471879771979776":"Introspecting Services and Endpoint Objects","6633923894312960":"Quiz: Kubernetes Primer","5385440837238784":"Working with kubectl","5290412840321024":"Quiz: Threat Modeling Kubernetes","4989011866157056":"Introduction to Services","5908854207414272":"Performing a Rolling Update","4683610364837888":"Provision Volume Using an Existing StorageClass","5590578038308864":"Tampering","5386648964562944":"Workload Isolation","4557357217480704":"Accessing the Apps","6239823265267712":"Creating a Governing Headless Service","5621636691656704":"Accessing Deployments","5305498176847872":"Protecting Pods","6199745228832768":"How to Perform a Rollback","4643471946153984":"Hosted Kubernetes Cluster","4798463328911360":"Introduction to StatefulSets","6349481497853952":"Glossary","4575772359524352":"Quiz: ConfigMaps","4844584195588096":"The Operating System of the Cloud","6140653961478144":"Deployment Theory","6668148423000064":"Labels and Loose Coupling","6503562960961536":"Where Did Kubernetes Come From?","6192842612408320":"Packaging Apps for Kubernetes","5503329435123712":"Quiz: Theory of Working with Pods","4898508983238656":"Kubernetes Background","4607032440127488":"kubectl exec: Running Commands in Pods","4948867511484416":"Information Disclosure","5010985153724416":"Quiz: Kubernetes Storage","5224200849588224":"Control Plane and Nodes: Worker Nodes","5190404795269120":"Summary: Theory of Kubernetes Services","6403710373593088":"Storage Providers and Container Storage Interface","5315846861750272":"Control Plane and Nodes: Control Plane","5029839724609536":"Summary Kubernetes Deployments","6159039072305152":"Multi-Container Pods: Init Containers","5616238186201088":"Spoofing","4606552947294208":"Summary: Getting Kubernetes","6350100756430848":"The Declarative Model and the Desired State","5545220633526272":"How to Create a Deployment","5632351328534528":"Quiz: Service Discovery","6703603914899456":"Rolling Updates with Deployments","6021328361488384":"How Do We Deploy Pods?","6155318489776128":"Create a Service—The Declarative Way","6540444985982976":"Services and Endpoints Objects","5439039833374720":"Quiz: StatefulSets","5825053825433600":"ConfigMap Theory","6483868052881408":"Summary: Hands-On with Kubernetes Services","6370417601150976":"Hands-On with StatefulSets","5876334594097152":"Storage Classes and Dynamic Provisioning","6708870652100608":"Introduction to Threat Modeling","6697243202551808":"Pod Manifest Files","5141290537713664":"Service Discovery","4869493865054208":"Injecting ConfigMap and Secret Data into Pods and Containers","6171315632340992":"Elevation of Privilege","5372184991105024":"Summary: Working Hands-On with Pods","4649656939184128":"Scaling StatefulSets","5641207970529280":"Volumes and Handling Failures","4862729559998464":"Repudiation","5609888211271680":"Auditing and Security Monitoring","5531865164283904":"Identity and Access Management (IAM)","4562983693844480":"Network and Headless Services","6179049224273920":"Pod Life Cycle","5880606561927168":"Summary: StatefulSets","6090578400903168":"Pod Theory","6412073079668736":"Summary: Service Discovery","4753739057463296":"Kubernetes from 40K Feet","6243784114307072":"Moving Images From Non-Production to Production","5941183415451648":"Pods and Scheduling","6537487992619008":"Check Pod Immutability","5986205871505408":"Multi-Container Pod Example: Init Container","5254419008847872":"Multi-Container Pod Example: Sidecar Container","6578127862366208":"Namespaces","6035041528709120":"Namespace Use Cases","4525315896770560":"Default Namespaces","4510889084846080":"Creating and Managing Namespaces","5141229021298688":"Deploying Objects to Namespaces","5395767439523840":"Summary: Virtual Clusters with Namespaces","5404176784162816":"Quiz: Virtual Clusters with Namespaces","5251353303973888":"Setting the Scene for Ingress","4791642284752896":"Ingress Architecture","5168625824956416":"Working with NGINX Controller","4917301787099136":"Summary: Ingress","6604468859043840":"Summary: WebAssembly on Kubernetes","5288797365731328":"Quiz: Ingress","5352710270746624":"Inspecting Ingress Objects","6487599242149888":"Configure Host-Based and Path-Based Routing","5243460647256064":"WebAssembly Primer","6138671971827712":"Wasm on Kubernetes","5461421647593472":"Build and Prepare the Wasm App","4592952098029568":"Deploy and Test the App","5497498953449472":"Build and Configure Kubernetes for Wasm","6472185611157504":"Quiz: WebAssembly on Kubernetes","6357034903928832":"The Service Registry","6038436209623040":"Provision Volume by Creating a New StorageClass","5176742365233152":"Hands-On with Secrets","4821380099342336":"API Security Big Picture","5017443343138816":"Authentication","6643144903229440":"Authorization (RBAC)","5723910903824384":"Admission Control","6532241331453952":"Cluster-Level Users and Permissions","5120299723259904":"Quiz: API Security and RBAC","4820845375913984":"Summary: API Security and RBAC","5601904204054528":"Introduction to Kubernetes API","4629128169259008":"API Analogy","5626127148515328":"The API Server","5786324529709056":"A Word on CRUD","5683712190971904":"The API","5005803377786880":"Inspecting the API","6057708195545088":"Alpha, Beta, and Stable","4883082622926848":"Quiz: Kubernetes API","6528673388036096":"Summary: Kubernetes API","4859922632540160":"Wrap Up"},"page_tags":{"5922530386771968":"","4602495042060288":"","6533879289610240":"","5608365678919680":"","5873104443146240":"","4655426472771584":"","6699439208005632":"","6409887912296448":"","5373842649251840":"","5129053636919296":"","4594171023196160":"","5538935351541760":"","4528456281882624":"","4770615799054336":"","4969790176231424":"","6069288013135872":"","4824395164942336":"","4564699162083328":"","6181484571394048":"","6576140830375936":"","6034185010544640":"","5927077655085056":"","5970484102430720":"","5951419682127872":"","6294721535148032":"","6406333258530816":"","4750963205210112":"","6570519924047872":"","4902209335590912":"","5420895288950784":"","5760922615283712":"","6306953350348800":"","5938537665921024":"","4962499370680320":"","4539774728667136":"","4915922696404992":"","5577704008056832":"","5506338059714560":"","5471879771979776":"","6633923894312960":"","5385440837238784":"","5290412840321024":"","4989011866157056":"","5908854207414272":"","4683610364837888":"","5590578038308864":"","5386648964562944":"","4557357217480704":"","6239823265267712":"","5621636691656704":"","5305498176847872":"","6199745228832768":"","4643471946153984":"","4798463328911360":"","6349481497853952":"","4575772359524352":"","4844584195588096":"","6140653961478144":"","6668148423000064":"","4607032440127488":"","6192842612408320":"","5503329435123712":"","4898508983238656":"","6503562960961536":"","4948867511484416":"","5010985153724416":"","5224200849588224":"","5190404795269120":"","6403710373593088":"","5315846861750272":"","5029839724609536":"","6159039072305152":"","5616238186201088":"","4606552947294208":"","6350100756430848":"","5545220633526272":"","5632351328534528":"","6703603914899456":"","6021328361488384":"","6155318489776128":"","6540444985982976":"","5439039833374720":"","5825053825433600":"","6483868052881408":"","6370417601150976":"","5876334594097152":"","6708870652100608":"","6697243202551808":"","5141290537713664":"","4869493865054208":"","6171315632340992":"","5372184991105024":"","4649656939184128":"","5641207970529280":"","4862729559998464":"","5609888211271680":"","5531865164283904":"","4562983693844480":"","6179049224273920":"","5880606561927168":"","6090578400903168":"","6412073079668736":"","4753739057463296":"","6243784114307072":"","5941183415451648":"","6537487992619008":"","5986205871505408":"","5254419008847872":"","6578127862366208":"","6035041528709120":"","4525315896770560":"","4510889084846080":"","5141229021298688":"","5395767439523840":"","5404176784162816":"","5251353303973888":"","4791642284752896":"","5168625824956416":"","4917301787099136":"","6604468859043840":"","5288797365731328":"","5352710270746624":"","6487599242149888":"","5243460647256064":"","6138671971827712":"","5461421647593472":"","4592952098029568":"","5497498953449472":"","6472185611157504":"","6357034903928832":"","6038436209623040":"","5176742365233152":"","4821380099342336":"","5017443343138816":"","6643144903229440":"","5723910903824384":"","6532241331453952":"","4820845375913984":"","5120299723259904":"","5601904204054528":"","4629128169259008":"","5626127148515328":"","5786324529709056":"","5683712190971904":"","5005803377786880":"","6057708195545088":"","4883082622926848":"","6528673388036096":"","4859922632540160":""},"collection_toc_is_enabled":true,"page_count":null,"docker":{"container":{"file":{"name":"kubernetes-deep-latest.tar.gz","size":4111},"imageName":"author-10370001-collection-6445473125629952-rev-37-container-5778584495325184-kubernetes-deep-latest","buildStatusUrl":"/api/author/10370001/collection/6445473125629952/containers/5778584495325184/build/status","buildLogUrl":"/api/author/10370001/collection/6445473125629952/containers/5778584495325184/build/log","metadata":{"sizeInBytes":4111},"id":-1,"tarballDownloadUrl":"/api/author/10370001/collection/6445473125629952/containers/5778584495325184/download","rebuildImageUrl":"/api/author/10370001/collection/6445473125629952/containers/5778584495325184/rebuild","buildStatus":"SUCCESS","track":false},"envs":[],"jobs":[{"key":"Gmh6Bxbug5uoCsgztzztr","jobType":"Live","name":"pod.yml manifest files","inputFileName":"nimra.py","runScript":"cp /usercode/pod.yml /TheK8sBook/pods/pod.yml","ports":"8080","startScript":"chmod +x ./kind \nmv ./kind /usr/local/bin/kind\ncp /usercode/pod.yml /TheK8sBook/pods/pod.yml\ncd /TheK8sBook/pods/\nclear\nkind create cluster","runInLiveContainer":true,"forceRelaunchOnCompChange":true},{"key":"Il1gZEL1r8tBku8P-V6vD","jobType":"Live","name":"initpod.yml init container","inputFileName":"nimra.py","runScript":"cp /usercode/initpod.yml /TheK8sBook/pods/initpod.yml\ncp /usercode/initsvc.yml /TheK8sBook/pods/initsvc.yml","ports":"8080","startScript":"chmod +x ./kind \nmv ./kind /usr/local/bin/kind\ncp /usercode/initpod.yml /TheK8sBook/pods/initpod.yml\ncp /usercode/initsvc.yml /TheK8sBook/pods/initsvc.yml\ncd /TheK8sBook/pods/\nclear\nkind create cluster","runInLiveContainer":true,"forceRelaunchOnCompChange":true},{"key":"8ULQPtiifHXcPDPLXIujW","jobType":"Live","name":"sidecarpod.yml. sidecar container ","inputFileName":"nimra.py","runScript":"cp /usercode/sidecar-local.yml /TheK8sBook/pods/sidecar-local.yml","ports":"8080","startScript":"chmod +x ./kind \nmv ./kind /usr/local/bin/kind\ncp /usercode/sidecar-local.yml /TheK8sBook/pods/sidecar-local.yml\ncd /TheK8sBook/pods/\nclear\nkind create cluster","runInLiveContainer":true,"forceRelaunchOnCompChange":true},{"key":"9Y8yH78gqkH8CxNNsYXer","jobType":"Live","name":"creating namespaces shield-ns.yml","inputFileName":"nimra.py","runScript":"cp /usercode/shield-ns.yml /TheK8sBook/namespaces/shield-ns.yml","ports":"8080","startScript":"chmod +x ./kind \nmv ./kind /usr/local/bin/kind\ncp /usercode/shield-ns.yml /TheK8sBook/namespaces/shield-ns.yml\ncd /TheK8sBook/namespaces/\nclear\nkind create cluster","runInLiveContainer":true,"forceRelaunchOnCompChange":true},{"key":"tqX1dgG-jzj_hcn2kjvgf","jobType":"Live","name":"creating namespaces app.yml","inputFileName":"nimra.py","runScript":"cp /usercode/app.yml /TheK8sBook/namespaces/app.yml","ports":"8080","startScript":"chmod +x ./kind \nmv ./kind /usr/local/bin/kind\ncp /usercode/app.yml /TheK8sBook/namespaces/app.yml\ncd /TheK8sBook/namespaces/\nclear\nkind create cluster\nsleep 5 \nkubectl apply -f shield-ns.yml\nclear","runInLiveContainer":true,"forceRelaunchOnCompChange":true},{"key":"swbVkPXU0aoFEbZQHg5l3","jobType":"Live","name":"creating deployment deploy.yml","inputFileName":"nimra.py","runScript":"cp /usercode/deploy.yml /TheK8sBook/deployments/deploy.yml","ports":"8080","startScript":"chmod +x ./kind \nmv ./kind /usr/local/bin/kind\ncp /usercode/deploy.yml /TheK8sBook/deployments/deploy.yml\ncd /TheK8sBook/deployments/\nclear\nkind create cluster","runInLiveContainer":true,"forceRelaunchOnCompChange":true},{"key":"DUE3vqW53hHJqd0wAeH_R","jobType":"Live","name":"creating deployment deploy.yml-copy","inputFileName":"nimra.py","runScript":"cp /usercode/deploy.yml /TheK8sBook/namespaces/deploy.yml","ports":"8080","startScript":"chmod +x ./kind \nmv ./kind /usr/local/bin/kind\ncp /usercode/deploy.yml /TheK8sBook/namespaces/deploy.yml\ncd /TheK8sBook/deployments/\nclear\nkind create cluster","runInLiveContainer":true,"forceRelaunchOnCompChange":true},{"key":"cEHG2MAyo23u4pl7bkuQo","jobType":"Live","name":"accessing deployment deploy.yml","inputFileName":"nimra.py","runScript":"cp /usercode/deploy.yml /TheK8sBook/deployments/deploy.yml","ports":"8080","startScript":"chmod +x ./kind \nmv ./kind /usr/local/bin/kind\ncp /usercode/deploy.yml /TheK8sBook/deployments/deploy.yml\ncd /TheK8sBook/deployments/\nclear\nkind create cluster\nsleep 5 \nkubectl apply -f deploy.yml\nclear","runInLiveContainer":true,"forceRelaunchOnCompChange":true},{"key":"qDTFRYWwEFKHkx4-2EBhB","jobType":"Live","name":"accessing deployment application deploy.yml","inputFileName":"nimra.py","runScript":"cp /usercode/deploy.yml /TheK8sBook/deployments/deploy.yml\ncp /usercode/lb.yml /TheK8sBook/deployments/lb.yml","ports":"8080","startScript":"chmod +x ./kind \nmv ./kind /usr/local/bin/kind\ncp /usercode/deploy.yml /TheK8sBook/deployments/deploy.yml\ncp /usercode/lb.yml /TheK8sBook/deployments/lb.yml\ncd /TheK8sBook/deployments/\nclear\nkind create cluster\nsleep 5 \nkubectl apply -f deploy.yml\nclear","runInLiveContainer":true,"forceRelaunchOnCompChange":true},{"key":"AOTAlR4mIwEd3N37O7ytn","jobType":"Live","name":"rolling update deploy.yml","inputFileName":"nimra.py","runScript":"cp /usercode/deploy.yml /TheK8sBook/deployments/deploy.yml\ncp /usercode/lb.yml /TheK8sBook/deployments/lb.yml","ports":"8080","startScript":"chmod +x ./kind \nmv ./kind /usr/local/bin/kind\ncp /usercode/deploy.yml /TheK8sBook/deployments/deploy.yml\ncp /usercode/lb.yml /TheK8sBook/deployments/lb.yml\ncp /usercode/deploy-previous.yml /TheK8sBook/deployments/deploy-previous.yml\ncd /TheK8sBook/deployments/\nclear\nkind create cluster\nsleep 5 \nkubectl apply -f lb.yml\nkubectl apply -f deploy-previous.yml\nclear","runInLiveContainer":true,"forceRelaunchOnCompChange":true},{"key":"9Ahqrfm7OHq1RYa3Fz5jS","jobType":"Live","name":"perform a rollback deploy.yml","inputFileName":"nimra.py","runScript":"cp /usercode/deploy.yml /TheK8sBook/deployments/deploy.yml\ncp /usercode/lb.yml /TheK8sBook/deployments/lb.yml","ports":"8080","startScript":"chmod +x ./kind \nmv ./kind /usr/local/bin/kind\ncp /usercode/deploy.yml /TheK8sBook/deployments/deploy.yml\ncp /usercode/deploy-previous.yml /TheK8sBook/deployments/deploy-previous.yml\ncp /usercode/lb.yml /TheK8sBook/deployments/lb.yml\ncd /TheK8sBook/deployments/\nclear\nkind create cluster\nsleep 5 \nkubectl apply -f lb.yml\nkubectl apply -f deploy-previous.yml\nsleep 5\nkubectl apply -f deploy.yml\nclear","runInLiveContainer":true,"forceRelaunchOnCompChange":true},{"key":"oD91eTjIvn6os1I8psJCa","jobType":"Live","name":"services imperatively deploy.yml","inputFileName":"nimra.py","runScript":"cp /usercode/deploy.yml /TheK8sBook/services/deploy.yml","ports":"8080","startScript":"chmod +x ./kind \nmv ./kind /usr/local/bin/kind\ncp /usercode/deploy.yml /TheK8sBook/services/deploy.yml\ncd /TheK8sBook/services/\nkind create cluster\nsleep 5\nkubectl apply -f deploy.yml\nclear","runInLiveContainer":true,"forceRelaunchOnCompChange":true},{"key":"7J9B_HpEwCeHnnmWF_JjG","jobType":"Live","name":"services declaratiely lb.yml","inputFileName":"nimra.py","runScript":"cp /usercode/deploy.yml /TheK8sBook/services/deploy.yml\ncp /usercode/lb.yml /TheK8sBook/services/lb.yml","ports":"8080","startScript":"chmod +x ./kind \nmv ./kind /usr/local/bin/kind\ncp /usercode/deploy.yml /TheK8sBook/services/deploy.yml\ncp /usercode/lb.yml /TheK8sBook/services/lb.yml\ncd /TheK8sBook/services/\nkind create cluster\nsleep 5\nkubectl apply -f deploy.yml\nclear","runInLiveContainer":true,"forceRelaunchOnCompChange":true},{"key":"WlopyuTMaTU3FS1HszasL","jobType":"Live","name":"services endpoint lb.yml","inputFileName":"nimra.py","runScript":"cp /usercode/deploy.yml /TheK8sBook/services/deploy.yml\ncp /usercode/lb.yml /TheK8sBook/services/lb.yml","ports":"8080","startScript":"cp /usercode/deploy.yml /TheK8sBook/services/deploy.yml\ncp /usercode/lb.yml /TheK8sBook/services/lb.yml\ncd /TheK8sBook/services/\nclear\nkind create cluster\nsleep 5\nkubectl apply -f deploy.yml\nkubectl apply -f lb.yml\nclear","runInLiveContainer":true,"forceRelaunchOnCompChange":true},{"key":"DnAB9WUKH0bGqGJNaVwX-","jobType":"Live","name":"ingress host-based lb-all.yml","inputFileName":"nimra.py","runScript":"cp /usercode/lb-all.yml /TheK8sBook/ingress/ig-all.yml\ncp /usercode/app.yml /TheK8sBook/ingress/app.yml","ports":"8080","startScript":"cp /usercode/ig-all.yml /TheK8sBook/ingress/ig-all.yml\ncp /usercode/app.yml /TheK8sBook/ingress/app.yml\ncd /TheK8sBook/ingress/\nkind create cluster\nsleep 5\nkubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.9.4/deploy/static/provider/cloud/deploy.yaml\nclear","runInLiveContainer":true,"forceRelaunchOnCompChange":true},{"key":"nWYsB8mqViQ5QQXMuWfc1","jobType":"Live","name":"inspecting ingress ig-all.yml","inputFileName":"nimra.py","runScript":"cp /usercode/ig-all.yml /TheK8sBook/ingress/ig-all.yml\ncp /usercode/app.yml /TheK8sBook/ingress/app.yml","ports":"8080","startScript":"cd /TheK8sBook/ingress/\nkind create cluster\nsleep 3\nkubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.9.4/deploy/static/provider/cloud/deploy.yaml\nsleep 3\nkubectl apply -f app.yml","runInLiveContainer":true,"forceRelaunchOnCompChange":true},{"key":"7HXGwP1t_S_MteNE4V3sh","jobType":"Live","name":"inspecting ingress ig-all.yml-copy","inputFileName":"nimra.py","runScript":"cp /usercode/ig-all.yml /TheK8sBook/ingress/ig-all.yml\ncp /usercode/app.yml /TheK8sBook/ingress/app.yml","ports":"8080","startScript":"cd /TheK8sBook/ingress/\nkind create cluster\nsleep 3\nkubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.9.4/deploy/static/provider/cloud/deploy.yaml\nsleep 3\nkubectl apply -f app.yml\nclear","runInLiveContainer":true,"forceRelaunchOnCompChange":true},{"key":"9T_ioLP3hAg8ocVqUKBQb","jobType":"Live","name":"wasm build and prepare the app","inputFileName":"nimra.py","runScript":"cp -r /usercode/* /TheK8sBook/wasm/","ports":"8080","startScript":"cd /TheK8sBook/wasm/\nclear","runInLiveContainer":true,"forceRelaunchOnCompChange":true},{"key":"0bmPkKOa1ZKOofRfdkdUb","jobType":"Live","name":"k3d cluster wasm","inputFileName":"nimra.py","runScript":"cp -r /usercode/* /TheK8sBook/wasm/","ports":"8090","startScript":"cd /TheK8sBook/wasm/\nk3d cluster create wasm --image ghcr.io/deislabs/containerd-wasm-shims/examples/k3d:v0.10.0 -p \"8090:80@loadbalancer\" --agents 2\nsleep 2\nkubectl label nodes k3d-wasm-agent-1 wasm=\"yes\"\nkubectl apply -f - <

Threat modeling

","authorId":"10370001","collectionId":"6445473125629952","pageId":"6708870652100608","isCollectionPageLockedCachingEnabled":true,"aceFeatureFlags":{"enableAceEditor":true,"enableAceEditorForAnswers":true},"meta":{"type":["Article","TechArticle"],"title":"Introduction to Threat Modeling","name":"Learn Kubernetes: A Deep Dive","description":"Get introduced to threat modeling in Kubernetes.","image":"https://educative.io/api/collection/10370001/6445473125629952/image/6299740249915392.png","isAccessibleForFree":false,"keywords":"$2c","provider":"Educative","publisher":"Educative","id":"courses/learn-kubernetes/introduction-to-threat-modeling","author":"Educative","educationalLevel":"advanced","noIndex":false,"isForcedNoIndex":false,"noFollow":false,"redirectInfo":{"isDeletedCollectionPageRedirectable":false},"page_titles":"$2d","is_marked_for_deletion":false,"transition_page_title":"","is_redirectable":false,"deleted_course_lesson_redirect":{"author_id":null,"collection_id":null,"page_id":null,"redirect_url_slug":null},"metadata_status":101,"additional_course_alternatives":[]},"requestUrl":"/courses/learn-kubernetes/introduction-to-threat-modeling","requestUrlInfo":{"authorId":"10370001","collectionId":"6445473125629952","pageId":"6708870652100608","courseUrlSlug":"learn-kubernetes","pageUrlSlug":"introduction-to-threat-modeling"},"isExternalContent":false}}],[["$","script",null,{"id":"generate-data","type":"application/ld+json","dangerouslySetInnerHTML":{"__html":"$2e"}}],false,"$undefined"]]