[go: up one dir, main page]
Skip to content

chrisns/k8s-exercise

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

60 Commits
.github
.github
 
 
app
app
 
 
CODE_OF_CONDUCT.md
CODE_OF_CONDUCT.md
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
SECURITY.md
SECURITY.md
 
 

Repository files navigation

Interview

Exercise

  • 🐳 dockerify the app
  • ☸ write a deployment and deploy to minikube
  • 🍪 provide inbound access to the app

Considerations / discussion points:

  • The app is pretty flakey, so a:
    • small image will be important to improve startup time on rescheduling
    • aggressive checks will be needed to minimize bounced requests
    • multiple replicas will be needed to minimize dropped requests
  • Network policy deny-all policy
  • internal+external TLS, auth - how sidecar pattern might help with this
  • How to run the app as non-privileged user
  • Readonly FS
  • How to inject secrets via env vars / files, which is better
  • memory + cpu allocation right sizing
  • autoscaling

use minikube with ingress

minikube start --memory=4096 --addons=ingress

maybe if one can find a way to make ingress work with network policies and a cni:

minikube start --network-plugin=cni --memory=4096 --addons=ingress
kubectl create -f https://raw.githubusercontent.com/cilium/cilium/v1.6/install/kubernetes/quick-install.yaml

About

k8s interview exercise

Topics

docker kubernetes

Resources

Readme

License

MIT license

Code of conduct

Code of conduct

Security policy

Security policy
Activity

Stars

4 stars

Watchers

3 watching

Forks

4 forks
Report repository

Releases

No releases published

Sponsor this project

  •  
Learn more about GitHub Sponsors

Packages

No packages published

Contributors 4

  •  
  •  
  •  
  •  

Languages