[Epic][Enterprise]: Namespaces

[zhenik]

Description

Enterprise feature Namespaces is implemented in Consul, Nomad and Vault.

The main idea is isolation in a shared cluster. (teams, deployments, services, policies, etc...)

Acceptance Criteria

1. • [x] Provide isolation in consul (resource isolation) #346
2. • [ ] Provide isolation in nomad (with different users, teams and different deployments)
3. • [x] Provide isolation in vault (resouce isolation) WIP #357

---

References

• nomad cli - namespaces
• nomad workshop
• docker namespaces

Feature idea

Main idea consul

Consul namespaces allow global operators to create isolated environments in a shared cluster and apply any required service access restrictions for authenticated users.

Main idea nomad

Namespaces enhance the usability of a shared cluster by isolating teams from the jobs of others, by providing fine grain access control to jobs when coupled with ACLs, and by preventing bad actors from negatively impacting the whole cluster.

Main idea vault

Many organizations implement Vault as a "service", providing centralized management for teams within an organization while ensuring that those teams operate within isolated environments known as tenants.

[zhenik]

https://github.com/fredrikhgrelland/vagrant-hashistack/issues/346