Developers ❤️ Rafay

Make Developers Happy by Providing Kubernetes Self-Service

Let developers spin up Kubernetes resources as needed, complete with the guardrails and controls that your business requires.

By enabling developer self-service wtih Rafay, our Platform Team removed our slow ticketing-based process to empower our development & ops teams to deploy 4x faster.

- Vice President of Architecture

    F500 Financial Services Company

Rafay Delivers Advanced Capabilities to Power Developer Self-Service

Rafay Provides Must-Have Features for Platform and Ops Teams to Enable Developer Self-Service

On-Demand Developer Sandboxes

Developers don’t always have brilliant ideas during business hours. If a developer needs to deploy a new piece of code in a Kubernetes cluster asap, they’ll need a namespace (AKA soft tenancy) and a deployment pipeline. But:

  • If all developers get cluster-role-binding level access in clusters, they may impact other developers using the same cluster.
  • The number of developers will likely be much larger than platform/SRE team members, leading to a service ticket bottleneck if everything must go through the platform team.

With Rafay’s workspace administration capabilities, everyone gets exactly what they need.

Platform Teams
Development Teams
Create pools of compute (called workspaces) for each team within a shared development or production cluster.
Delegate a team leader as a workspace admin and allow them to further subdivide compute across developers as needed.
Each team lives within the confines of their sandbox and cannot impact other teams members - no cross-team noisy neighbors.
tab image
Platform Teams
tab image
Create pools of compute (called workspaces) for each team within a shared development or production cluster.
Delegate a team leader as a workspace admin and allow them to further subdivide compute across developers as needed.
Each team lives within the confines of their sandbox and cannot impact other teams members - no cross-team noisy neighbors.
tab image
Leverage Rafay’s GitOps engine, Rafay’s CLI or the UI to create namespaces for developers.
Leverage Rafay’s pipeline capabilities to automate the “check-in to deployment” workflow for developers.
Visualize your team’s activities in a workspace-specific dashboard so you don’t miss any activity being carried out by your team.
No more tickets to file and waiting for a week.
Development Teams
tab image
Leverage Rafay’s GitOps engine, Rafay’s CLI or the UI to create namespaces for developers.
Leverage Rafay’s pipeline capabilities to automate the “check-in to deployment” workflow for developers.
Visualize your team’s activities in a workspace-specific dashboard so you don’t miss any activity being carried out by your team.
No more tickets to file and waiting for a week.

On-Demand Clusters

Not all use cases can be solved with a namespace on a shared cluster. In many cases, developers need a dedicated cluster (AKA hard tenancy). In such cases, instead of filing tickets and further burdening highly stretched platform teams, developers would much rather provision Kubernetes infrastructure themselves. But:

  • Developers may not have the skillset needed to drive Terraform, GitOps, Azure DevOps, Gitlab, CircleCI, Jenkins, or Bitbucket pipelines to provision Kubernetes clusters.
  • Developers in enterprises usually don’t have access to public cloud consoles.
  • Infrastructure-focused git repos may not grant “write” access to developers for governance purposes.

With Rafay’s self-service cluster lifecycle management capabilities, everyone gets exactly what they need.

Platform Teams
Development Teams
Define cluster templates that developers can use to spin up clusters that can be customized as needed.
Optionally add a pull-request step to ensure all infrastructure creation and lifecycle management activities are blessed by the platform team.
tab image
Platform Teams
tab image
Define cluster templates that developers can use to spin up clusters that can be customized as needed.
Optionally add a pull-request step to ensure all infrastructure creation and lifecycle management activities are blessed by the platform team.
tab image
Leverage cluster templates with Terraform for Rafay GitOps to drive cluster creation and lifecycle management activities.
If pull requests for infra-level changes are required, simply check in your code and your requests will manifest once the pull-request has been approved.
Development Teams
tab image
Leverage cluster templates with Terraform for Rafay GitOps to drive cluster creation and lifecycle management activities.
If pull requests for infra-level changes are required, simply check in your code and your requests will manifest once the pull-request has been approved.

Kubectl Access To Dev & Production Clusters

Although not all developers use kubectl access on an ongoing basis, when things go haywire in production, developers need visibility to figure out what’s happening. This may require them to temporarily access clusters. But:

  • Platform teams don’t like exposing KubeAPI endpoints to the Internet, meaning VPNs or jumphosts are needed to enable access.
  • Service accounts need to be created and retired as and when developers need access – which isn’t always straightforward.
  • All user activity must be audited to ensure compliance.
  • Developers accessing production environments must do so in a read-only fashion and must not be able to describe secrets.

This is a massive effort, and most companies don’t have a good way to provide developers with kubectl access, and when they do, there are no guardrails in place.

With Rafay’s zero-trust kubectl access capabilities, everyone gets exactly what they need.

Platform Teams
Development Teams
No VPNs or jumphosts are needed to enable developer kubectl access to Kubernetes clusters. And this is accomplished without exposing KubeAPI endpoints to the Internet
Service accounts are created just-in-time on an as needed basis and are tailored to the access level that the given developer has been granted (e.g., read-only, a single namespace, a full cluster).
All activity is fully audited centrally.
tab image
Platform Teams
tab image
No VPNs or jumphosts are needed to enable developer kubectl access to Kubernetes clusters. And this is accomplished without exposing KubeAPI endpoints to the Internet
Service accounts are created just-in-time on an as needed basis and are tailored to the access level that the given developer has been granted (e.g., read-only, a single namespace, a full cluster).
All activity is fully audited centrally.
tab image
Access any Kubernetes cluster in any cloud without a single extra step. Simply download a kubeconfig file and kubectl into your namespace or use the Rafay developer dashboard to debug your apps across clusters.
Development Teams
tab image
Access any Kubernetes cluster in any cloud without a single extra step. Simply download a kubeconfig file and kubectl into your namespace or use the Rafay developer dashboard to debug your apps across clusters.

Benefits of Leveraging Rafay to Power your Developer Self-Service Initiative

Increase Developer Velocity

Eliminate time-consuming ticket-driven requests that significantly slow down application development. Allow development teams to focus on writing code instead of requiring infrastructure knowledge and operational expertise.

Standardize with Guardrails

Standardize and centralize the creation of kubernetes clusters and namespaces. Provide developers much-needed autonomy coupled with governance you need.

Improve your Reliability

Consistently automate standard configurations with curated infrastructure – both for shared and dedicated clusters. Maintain control with proven best practices, all while improving developer experience.

Recent Posts from The Kubernetes Current Blog

Image for Rafay’s new Environment Manager Enables Developer Self-Service For Modern App Deployments – From Code To Cloud

Rafay’s new Environment Manager Enables Developer Self-Service For Modern App Deployments – From Code To Cloud

March 20, 2023 / by Abhinav Mishra

Today, I am pleased to pre-announce the launch of Rafay Environment Manager, which will be generally available in the 2nd half of this year. Environment Manager is a new, cutting-edge service that provides platform teams with the management, governance, and… Read More

Image for Rafay Named Leader and Outperformer in 2023 GigaOm Radar Report for Managed Kubernetes

Rafay Named Leader and Outperformer in 2023 GigaOm Radar Report for Managed Kubernetes

March 16, 2023 / by Sean Wilcox

All of us at Team Rafay are extremely proud to be recognized as a “Leader” and “Outperformer” in GigaOm’s 2023 Radar Report for Managed Kubernetes. Rafay’s leading position in the Innovator and Platform Play hemispheres highlights our… Read More

Image for Key Considerations When Implementing Virtual Kubernetes Clusters

Key Considerations When Implementing Virtual Kubernetes Clusters

March 7, 2023 / by Hemanth Kavuluru

In a Kubernetes context, multi-tenancy refers to sharing one large cluster among multiple teams, applications, or users primarily in lower environments such as development and testing—mainly to reduce cost and operational overhead around managing many clusters. Multi-tenancy is becoming… Read More

Want Free Access?

Sign-up for free and try all the features of the Managed Kubernetes Platform.

Sign Up Now