<h1 id="hierarchical">Hierarchical<a aria-hidden="true" class="anchor-heading icon-link" href="#hierarchical"></a></h1>
<p>Hierarchical namespaces were originally developed by the Workgroup for Multi-Tenancy and introduced in 2020 as a means of better supporting multi-tenancy of a single Kubernetes cluster.</p>
<p>The design implies ownership:</p>
<ul>
<li>Policies are inherited from parent namespaces.</li>
<li>Creation of subnamespaces can be delegated within a parent namespace.</li>
</ul>
<h1 id="implementation">Implementation<a aria-hidden="true" class="anchor-heading icon-link" href="#implementation"></a></h1>
<ul>
<li>A <a href="/notes/98de10e6-908c-4230-b02b-650f73717dc2">CRDs</a> within each namespace defines the parent.</li>
<li>The implementation is provided by the <abbr title="Hierarchal Namespace Controller">HNC</abbr> extension. This handles subnamespaces and propagates policy objects.</li>
<li>The kubectl <code>hns</code> plugin provides an interface for operations folks.</li>
</ul>

Hierarchical


![Digital brain](assets/images/logo.svg){display: block, margin: 0 auto, max-height: 50vh}

Hi, I'm Luke 👋

I'm a software engineer turned site reliability engineer. I'm currently big on knowledge management and learning.

# Find me elsewhere

- [👨‍💻 DEV](https://dev.to/lukecarrier)
- [🚢 GitHub](https://github.com/LukeCarrier)
- [👔 LinkedIn](https://www.linkedin.com/in/lukecarrier/)
- [📄 Résumé](https://github.com/LukeCarrier/resume)
