Explore Kubernetes architecture, frameworks, and interfaces. Gain insights into deployment, scaling, and management of containerized applications. Discover extensibilities and get hands-on customizing Kubernetes.

k8s-go.tar.gz

k8s-go-v2

go-env-v2

Kubernetes is a popular open-source container orchestration system that automates the deployment, scaling, and management of containerized applications. This course is designed to provide a comprehensive understanding of Kubernetes and its programming concepts. You’ll dive deep into advanced topics of Kubernetes.

This course will cover topics such as Kubernetes architecture, frameworks, plugins, and interfaces. You’ll also learn the powerful extensibilities of Kubernetes and make full use of these built-in capabilities to build your customized Kubernetes.

This course is ideal for developers, DevOps engineers, and system administrators who want to learn how to master Kubernetes. By the end of the course, you’ll have a solid understanding of Kubernetes, its programming concepts, and be able to deploy, scale, and manage containerized customizations on Kubernetes. You will also get hands-on experience extending Kubernetes to meet your requirements.

Programming with Kubernetes

# Mutating admission webhooks 

Kubernetes admission controllers provide us with ways to enforce rules or restrictions on the changes to the cluster, such as updating Pod labels, limiting resource quota, preventing unexpected operations on deleting objects, etc.

Sometimes, when built-in admission plugins don't suffice for what we need, we can use external webhooks for validating and mutating. In such an out-of-tree way, we can inject our custom logic into the Kubernetes admission control pipeline.

## Configuring the mutating admission webhook

Firstly, to use the mutating admission webhook in Kubernetes, we must ensure that the default enabled admission controller plugin `MutatingAdmissionWebhook` is actually enabled. This should be included if we have explicit settings on the flag `--enable-admission-plugins`, such as:

```bash
--enable-admission-plugins=...,MutatingAdmissionWebhook,...
```

Secondly, we need to create a configuration containing a stanza that looks just like the one below. This configuration can be configured dynamically.

Learn how the mutating admission webhook works in Kubernetes.

Before Getting Started

Kubernetes Architecture

Customizing AuthX

Dynamic Admission Control

Customizing Schedulers

Extending APIs with CustomResourceDefinition (CRD)

Extending APIs with Aggregated APIServer

Container Network Interface

Container Runtime Interface

Extend kubectl

How to Write Good Kubernetes Operators

Assessment of Programming with Kubernetes

Wrap Up

Mutating Admission Webhooks

Mutating admission webhooks

Configuring the mutating admission webhook