Interested in Kubernetes? We have a great meetup lined up for you. We have the great pleasure of welcoming Henning Jacobs from Zalando who is visiting Aarhus. Henning is an experienced speaker, and recently created the Kubernetes Failure Stories repository at Github which features a comprehensive list of Kubernetes post-mortems. See some Kubernetes failure stories on GitHub.
Further, Henrik Høegh will provide you with an introduction to how to handle secrets in a Kubernetes environment using HashiCorp Vault.
Manage your Cloud Native secrets with Vault by Henrik Høegh, Praqma
In this talk we will look at the method used to integrate Vault with Kubernetes, and how to authenticate, write and read data from it. But running Vault de coupled from Kubernetes is not the cloud native way.
In a Cloud Native world, we want things to integrate with the orchestrator. We also have sensitive information in our cluster, which we want to keep secret. Kuberentes secrets are not really suitable for storing information like database password, usernames or alike, as they are simply stored with a base64 encoding.
Instead, we want to keep our stuff in a secure place, where we can rotate access tokens. This is where Vault comes into the picture. Vault can store and control access to sensitive information, and it integrates with Kubernetes allowing pods to authenticate with their service account.
Henrik Høegh, Praqma:
As a DevOps consultant Henrik regularly works with build servers, Container technologies like Kubernetes, version control, and agile task management systems but also spend a great deal of time working with general organizational, architectural and process related challenges for customers. And yes, he drives a panda.
Kubernetes Failure Stories and How to Crash Your Clusters by Henning Jacobs, Zalando SE
Bootstrapping a Kubernetes cluster is easy, rolling it out to nearly 200 engineering teams and operating it at scale is a challenge. In this talk, we are presenting our approach to Kubernetes provisioning on AWS, operations and developer experience for our growing Zalando developer base. We will walk you through our horror stories of operating over 100 clusters and share the insights we gained from incidents, failures, user reports and general observations. Our failure stories will be sourced from recent and past incidents, so the talk will be up-to-date with our latest experiences.
Most of our learnings apply to other Kubernetes infrastructures (EKS, GKE, ..) as well. This talk strives to reduce the audience’s unknown unknowns about running Kubernetes in production.
Henning Jacobs, Zalando:
Henning joined Zalando in the beginning of 2010 and accompanied the transformation of Zalando’s technology department through the eras of PHP/MySQL and Java/PostgreSQL to the new world of ‘Radical Agility’. He helped building the STUPS cloud infrastructure to make innovation scale across autonomous teams. His five teams help streamline the developer experience by providing a cloud-native application runtime to over 200 engineering teams.