Interoperability of cluster governance tools and multi-instance SaaS for platform engineering

[devdattakulkarni]

Platform engineering teams use policy and governance tools such as OPA/Kyverno. When a Platform engineering team adds KubePlus for its multi-instance SaaS capability to such clusters, we want to ensure that the new APIs that will be registered will not be blocked by the policy/governance tools.

What we need here is, as part of registering the KubePlus APIs, we should check if any policy/governance tool is present on the cluster. If it is present, then we should update the policies to allow the registered APIs to be used on the cluster.

[devdattakulkarni]

It is not clear if there is any work that needs to be done in KubePlus for this. It will be up to the Platform Engineering teams to add the required Kyverno policies. For this reason, closing this issue.