Workflows

In this section are detailed the main workflow implemented by this operator.

Home Workspace

When a KubeSaw UserSignup is approved, a Space is created by default. The controller ensures an InternalWorkspace exists for the user's default Space.

This workflow is implemented by the UserSignup Reconciler.

InternalWorkspaces have a property representing their visibility. Visibility can be either private or community. A private InternalWorkspace is visible only by its owner and the users it's directly shared with. A community InternalWorkspace is visible by every authenticated users.

If an InternalWorkspace visibility is set to community, the operator makes sure that a SpaceBinding exists for the special-user kubesaw-authenticated, the space related to the InternalWorkspace, and the role viewer. If the visibility is set to private, the SpaceBinding is removed.

This workflow is implemented in the InternalWorkspace Reconciler.

The Konflux Workspaces Book

Workflows

Home Workspace

Public Viewer