The document outlines a self-service platform built on Kubernetes principles, emphasizing management, reusability, and minimal restrictions. It discusses integration with AWS services, including options for VPC and IAM access, while addressing key aspects such as security, multitenancy, monitoring, and application exposure. The focus is on providing a native platform interface that empowers teams to manage their applications effectively.

1. Self-service
platform with
Kubernetes

2. Platform principles
• Re-use existing solutions
• Managed
• Self-service
• Sane defaults
• Minimal restrictions, but sufficient
• Native platform interface (minimal abstractions)
• Teams responsible for apps
2

3. Context
• Kubernetes
• Cloud -> AWS
• EKS
• AWS network (no overlay)
• Managed
• CI/CD
3

4. Same VPC or a second VPC or a different AWS Account?
4
Option 1 Option 2 Option 3

5. AWS Services Access
5

7. AWS IAM & Cluster access
7

8. 8

9. Security
9

10. 10

11. Self-service
11

12. 12

13. Multitenancy
13

14. 14

15. Monitoring & Logging
15

17. Application exposure
17

19. State
19

20. 20

21. Platform CI/CD & Lifecycle
21

22. 22