- Learn OpenShift
- Denis Zuev Artemii Kropachev Aleksey Usov
- 179字
- 2021-08-13 16:03:53
Kubernetes limitations
Although it is a powerful orchestration engine, Kubernetes doesn't have the features that are commonly required by PaaS solutions such as OpenShift and others:
- Security:
Kubernetes namespaces are provided mainly for the purpose of resource quota enforcement for different groups of users, but they do not provide any security constraints or authentication. For example, every user from every namespace can see all other namespaces and their resources.
- Deployments:
Kubernetes provides the means to create a deployment from an image with a single command, but doesn't create a service for external clients.
- SCM integration:
Kubernetes doesn't support integration with SCM via webhooks to facilitate deployment.
- Builds:
Kubernetes doesn't provide advanced build modes such as Source-to-Image (S2I) and Custom Builder.
- Authentication:
Support for advanced authentication schemes such as LDAP, Google, GitHub, Keystone, or Kerberos is achieved only through a webhook or authenticating proxy.
- CI/CD:
Kubernetes has no integrated application life cycle support, which makes it difficult to integrate it into a corporate software delivery framework.
All these limitations will be addressed in the OpenShift sections in subsequent chapters.
- 樂學(xué)Windows操作系統(tǒng)
- 阿里云數(shù)字新基建系列:云原生操作系統(tǒng)Kubernetes
- Kali Linux滲透測試全流程詳解
- Kubernetes網(wǎng)絡(luò)權(quán)威指南:基礎(chǔ)、原理與實踐
- Windows Server 2012 Hyper-V Cookbook
- PLC控制系統(tǒng)應(yīng)用與維護(hù)
- 循序漸進(jìn)學(xué)Docker
- Windows Vista融會貫通
- Linux操作系統(tǒng)應(yīng)用編程
- 奔跑吧 Linux內(nèi)核(入門篇)
- 直播系統(tǒng)開發(fā):基于Nginx與Nginx-rtmp-module
- 嵌入式系統(tǒng)原理及開發(fā)
- 嵌入式實時操作系統(tǒng):RT-Thread設(shè)計與實現(xiàn)
- 嵌入式系統(tǒng)及其應(yīng)用(第三版)
- Joomla! 3 Template Essentials