Overview

Spectro Cloud extends its multi-cluster management and governance capabilities with the introduction of "Workspaces". Workspaces enable the logical grouping of clusters and namespaces to provide application- or team-specific governance and visibility into workloads, cost, and usage metrics. The application or team workload may be deployed into namespaces across clusters for achieving High Availability (HA), Disaster Recovery (DR), and organization-specific placement policies, etc. Grouping such namespaces and clusters into a workspace provides central management and governance in a multi-cluster distributed environment. The following sections describe various aspects of multi-cluster management via workspaces.

Namespace Management

Workspaces automate the creation/deletion of namespaces that are common to all clusters within the workspace. A workspace can hold a set of namespaces. Spectro Cloud Palette will periodically reconcile the workspace definition and add/remove namespaces if required from all clusters part of the workspace.

Quota Control

Usage quota in terms of CPU and memory usage limits is specified within the namespaces. Spectro cloud Palette sets the specified limits across all the clusters in the namespaces.

Role Based Access Control(RBAC)

Role bindings and cluster role bindings are specified within workspaces. Furthermore, these role bindings and cluster role bindings are created in every cluster within the workspaces, thus enabling centralized RBAC.

Utilization

Spectro Cloud Palette reports detailed resource utilization of workloads deployed in all the namespaces in the workspace across clusters. In addition, the CPU and memory usage trends within the workspace provide valuable insights into the consumption patterns of an application distributed across clusters.

Cost Attribution

Spectro Cloud Palette computes utilization cost for workloads deployed in all the namespaces that are part of the workspace across all the clusters based on the detailed resource utilization data. This can be used for internal charge-back or show-back purposes to determine the cost incurred by a application or team.

Workload Visibility

Workspaces provide a workload browser to view all the workloads such as pods, deployment, jobs, stateful sets, etc., deployed in all the namespaces that are part of the workspace across all the clusters. The workload browser aggregates resources across clusters from relevant namespaces and presents them with centralized visibility.