Terminology

Question 1

Admission controller

Answer 1

Code that validate or mutates resources to enforce policy.

Run as part of the API admission chain immediately after authentication and authorization

Question 2

Annotation

Answer 2

Object metadata often used to integrate with 3rd-party systems

Question 3

API group

Answer 3

A set of related API resources. For example, networking resources are usually located in the networking.k8s.io API group.

Question 4

API resource

Answer 4

All Kube objects, like Pods, Deployments, Services… They are defined in the API as resources

Question 5

Cloud controller manager

Answer 5

Control plane service that integrates with underlying cloud platform.
For example, when creating a LoadBalancer Service, the cloud controller manager implements the logic to provision one of the underlying cloud’s internet-facing load-balancers.

Question 6

Cloud Native

A loaded term and means different things to different people :D

Answer 6

I consider an application to be cloud native if it can self-heal, scale on-demand, perform rolling updates, and possibly rollbacks

Question 7

ConfigMap

Answer 7

Kubernetes object used to hold non-sensitive configuration data.

A great way to add custom configuration data to a generic container, at runtime, without editing the image.

Question 8

Container

Answer 8

Lightweight environment for running modern apps.

Each container is a virtual operating system with its own process tree, filesystem, shared memory, and more.

Question 9

CNI

Container Network Interface

Answer 9

Pluggable interface enabling different network topologies and architectures.

3rd-parties provide CNI plugins that enable overlay networks, BGP networks, and various implementations of each.

Question 10

Container runtime

Answer 10

Docker, cri-o, containerd, kata, etc.

Low-level software running on every cluster Node responsible for pulling container images, starting containers, stopping containers, and other low-level container operations.

Question 11

d