Speaker

Ashutosh Kumar

Ashutosh Kumar

Senior Software Engineer at Elastic

Bengaluru, India

Ashutosh is an active contributor and maintainer of the cluster api provider azure project. Currently he works as senior software engineer at Elastic and worked at VMware on cluster lifecycle team prior to this. He also had worked in a storage startup and is an emeritus control plane maintainer of the OpenEBS project which is a CNCF sandbox project for Kubernetes storage.

Area of Expertise

  • Information & Communications Technology

Topics

  • Kubernetes
  • golang
  • Containers
  • cluster-api-provider-azure

Rise of the Global Cloud Native Community: The Untold Stories

CNCF is known for nurturing and supporting a vibrant and diverse community of open-source contributors and maintainers.

The latest Project Journey Report of
Kubernetes highlights a rise in contributors particularly from the APAC region over the last few years.
Devstats show that the contributions from India have gone up by almost six times compared to five years ago.

They will explain how the impact of CNCF programs cuts through geographical boundaries and empowers individuals in their cloud native journeys. They will delve into the following success stories:
- Overcoming language barriers to become a core maintainer.
- Getting their first job when opportunities were scarce.
- Acquiring leadership skills, otherwise not easily attainable.
- Attracting new contributors through localisation initiatives.
- Building regional mentorship culture.

The speakers will also walk through all the regional efforts in the global community and how the audience can get involved.

Quirks of scaling up your Custom Controllers

Custom Resources and Custom Controllers have become part of most of the Kubernetes Services. Most of the Custom Controllers - when deployed as a single deployment work well, but as you scale them up to more than one replica in a cluster - you hit some interesting race conditions.

Ashutosh will present the quirks of scaling up Custom Controllers - around implementing mutex, handling upgrades and best practices around versioning of the CRs. The talk is based on the experiences of running Custom Controllers in openebs project.

CRs are crucial part of Kubernetes ecosystem enabling projects to put their own sauce within Kubernetes environment. Whenever it comes to access/modify a resource in the world of concurrent programming the very first thing that would come to our mind is mutexes to avoid undesired behaviours. This talk will walk through live examples of code and CR YAMLs.

OIDC And Workload Identity In Kubernetes

Traditionally, when applications running in Kubernetes pods need to access public cloud services, they would use service account credentials or other forms of authentication.
Workload identity provides a convenient and secure way to manage access to Cloud (e.g. Google, Azure etc) resources from within Kubernetes by mapping the service account to the associated cloud provider service account. It eliminates the need for managing and distributing individual service account keys or credentials, improving the overall security posture of your applications.
The speakers will walk through the concepts of workload identity on the following lines:

- Explain how OpenID Connect is used to achieve workload identity and the authentication workflow for the same.

- How to set up workload identity on public clouds for managed and unmanaged Kubernetes clusters for public clouds.

- They will also do a demo on how to set up workload identity with an example of Azure/Google public cloud.

KubeCon + CloudNativeCon North America 2023 Sessionize Event

November 2023 Chicago, Illinois, United States

ContainerDays 2019 Sessionize Event

June 2019 Hamburg, Germany

Ashutosh Kumar

Senior Software Engineer at Elastic

Bengaluru, India