Different concepts are required to exploit the full potential of the Napptive playground, let’s explore some of them in more detail:
- Web interface: An impressive UI to monitor and understand deployed applications.
- CLI: A CLI that integrates with the Kubernetes tools to deploy applications.
- OAM: The Open Application Model is the specification we use to define cloud-native applications.
- Kubernetes: Our orchestration engine of choice.
The playground is offered as a free service with some restrictions. In particular, applications will be shutdown after 24 hours. If you need more time contact us and discover our offerings. Check our Terms & conditions for more information.
Security is a key feature of any SaaS system. Our Playground enforces some security mechanisms to protect each customer cluster from interactions with others. Additionally, some restrictions apply related to the priviledges available on the containers:
- Priviledged containers are not allowed to avoid priviledge escalation and undesired interaction with the cluster infrastructure.
- Running as root is not allowed, use
runAsUserto launch your container with other user. Most images do not require changes to run without priviledges.
- Adding extra Linux capabilities is not permitted.
Our recommendations for packaging applications for Kubernetes are:
- Use a non root user to launch your application. In the Dockerfile, use
USERto specify the user that will execute the processes.
- Do not use reserved ports such as 80, Kubernetes services can be attached to any port, as routing is done through other layers such as load balancers or ingresses.
For more information, take a look to the Docker best practices on how to create Dockerfiles.
- Check the tutorials to learn how to deploy existing applications or package your own.