All Posts

A Look at How to Use TokenRequest Api

The TokenRequest API enables the creation of tokens that aren’t persisted in the Secrets API, that are targeted for specific audiences (such as external secret stores), have configurable expiries, and are bindable to specific pods.

Taking Advantage of Deadman's Switch in Prometheus

When building systems, monitoring is extremely important to know the health of your system. Be it a car, with its basic engine light, a server that checks that a process is running, or a complicated distributed system that ensures things are happening within acceptable latencies.

Monitoring External Etcd Cluster With Prometheus Operator

The recommended way to run etcd for kubernetes is to have your etcd cluster outside of the kubernetes cluster. Great, good stuff. But you also run Prometheus via the Prometheus Operator to monitor everything about your cluster.

Monitor external services with the prometheus operator

Using the Prometheus Operator, the general way we define what targets should be scraped is using a ServiceMonitor This works great for services that are running in your cluster and already have a service definition.

K8s Node Affinity for Env

One nice use of name spaces is to split up development environments such as dev, qa, staging, production etc. However, you may still find yourself wanting more separation that just the name spaces.

K8s 1.7 Master Changes

In k8s 1.7 the deprecated kubelet flag of register-schedulable officially got removed. Which means in order to keep pods from being scheduled on your controllers you now need to use register with taints