Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Private StorageClass #77926

Open
zhiteng opened this issue May 15, 2019 · 2 comments

Comments

Projects
None yet
2 participants
@zhiteng
Copy link

commented May 15, 2019

@kubenetes/sig-storage

What would you like to be added:
In big enough k8s deployments, there are cases when certain StorageClasses were crafted for some particular use cases. It's desired to limit to the exposure of such StorageClasses, in other words, making some StorageClasses private (only visible/usable for some users/groups/namespaces). API to change who has access to StorageClasses is also needed to make this feature practical.

Why is this needed:
The fact that in our deployment of K8s, we have multiple storage devices, each might be configured differently in order to provide different classes of service, in terms of performance. Such type of classes of service are mapped to StorageClasses perfectly. However, except for certain generic SCes, most of such SCes are crafted for certain use cases, meaning they are not supposed to be consumed by general public. We can only control the quota of there SCes so that most users won't be able to use them, but they can be seen from list SCes API and our support has constantly receive inquiry like what those SCes are for, and why they cannot use them. As our service running longer and longer, more and more fine-tuned StorageClasses were added, we started to miss the private volume type API from OpenStack block storage (https://developer.openstack.org/api-ref/block-storage/v3/index.html#volume-types-types, https://developer.openstack.org/api-ref/block-storage/v3/index.html#volume-type-access-volumes). We wonder if this is common desired feature and would love to see K8s to add support for private StorageClasses.

Thanks.

@zhiteng

This comment has been minimized.

Copy link
Author

commented May 15, 2019

/sig storage

@k8s-ci-robot k8s-ci-robot added sig/storage and removed needs-sig labels May 15, 2019

@zhiteng

This comment has been minimized.

Copy link
Author

commented May 15, 2019

/sig api

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.