Kubernetes cloud native cluster resource deletion protection method and device, equipment and storage medium

A technology of protection device and storage medium, applied in the field of information, to achieve the effect of improving protection

Pending Publication Date: 2022-04-05
中国东盟信息港股份有限公司
View PDF0 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

The third configuration can protect the generated container groups from being deleted, but their parent resources are still deleted, leaving orphan (orphan) container groups is not particularly useful
Therefore, none of the current existing solutions can effectively prevent key important resources from being accidentally deleted

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Kubernetes cloud native cluster resource deletion protection method and device, equipment and storage medium
  • Kubernetes cloud native cluster resource deletion protection method and device, equipment and storage medium
  • Kubernetes cloud native cluster resource deletion protection method and device, equipment and storage medium

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0040] The present invention will be further described below in conjunction with the specific embodiments in the accompanying drawings.

[0041] refer to Figure 1~3 , a kind of Kubernetes cloud native cluster resource deletion protection method provided by the present invention, comprising:

[0042] Step 1, API Server is configured to use WebhookServer through ValidatingWebhookConfiguration;

[0043] Step 2. The API Server receives a request to delete cascaded resources, and the cascaded resources include at least one of Namespace, CustomResourceDefinition, Deployment, StatefulSet, and ReplicaSet;

[0044] Step 3: After the API Server receives the request to delete the cascade resource, it performs the authentication and authorization process, and if the authentication process passes, then executes Step 4; otherwise, returns the information that the deletion is prohibited;

[0045] Step 4: Enter the admission controller to perform compliance verification. If the compliance ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a Kubernetes cloud native cluster resource deletion protection method, relates to the technical field of information, solves the technical problem that resources of a container cluster are accidentally deleted, and comprises the following steps: an API (Application Program Interface) Server configures and uses a Webhook Server through a ValidatingWebhook Configuration; the API Server receives a request for deleting the cascade resources; after the API Server receives the request for deleting the cascade resources, the authentication process of the authentication and the authentication process of the authentication are carried out, if the authentication process passes, the step 4 is executed, and if the authentication process passes, the step 5 is executed; otherwise, returning deletion forbidding information; entering an admission controller to carry out compliance verification, and if the compliance verification is passed, returning information of agreeing to delete; otherwise, returning information of forbidding deletion. The invention further discloses a Kubernetes cloud native cluster resource deletion protection device and equipment and a storage medium. According to the method, certain key resources are protected from being deleted by introducing set annotation configuration and admission webhooks, the cascade resources can be specially protected, and the resources are allowed to be deleted only when all subordinate resources do not exist, so that the resources are conditionally protected.

Description

technical field [0001] The present invention relates to the field of information technology, more specifically, it relates to a Kubernetes cloud native cluster resource deletion protection method, device, equipment and storage medium. Background technique [0002] In the Kubernetes cloud-native cluster, there are a large number of various resources, some of which are extremely important, such as namespace, deployment, and user-defined resource definition (CRD). The importance of these resources is that they are all cascading resources, that is, they are all managers, or owners, of some other resource. For example, the namespace may contain container groups (pods), and user-defined resources will be associated with custom resources (CR). Once such resources are deleted, kubernetes will adopt a cascading deletion mechanism, that is, when these resources are deleted, their subordinate resources will also be deleted, and this deletion is generally irreversible. After being rem...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): G06F9/455G06F9/445G06F9/50
Inventor 赵凯麟黄芳凤韦克璐崔思恒
Owner 中国东盟信息港股份有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap