Glossary¶

Important

Harmonization of documentation with this glossary is underway. (See #609)

There are only two hard things in Computer Science: cache invalidation and naming things.

— Phil Karlton

This page introduces terminology used in the Compliant Kubernetes project. We borrow terminology from:

You may want to familiarize yourself with that terminology first.

When naming things, we stick to Inclusive Naming.

Please capitalize these terms, i.e., treat them as proper nouns.

Application Developer¶

A person who writes an application that runs in a Kubernetes cluster.

Usage notes:

It's okay to use "app dev", "dev" or "developer", if it's clear from the context that we refer to an Application Developer.
If you need more precision, use:
- "Application Developers who are Grafana administrators" (see Grafana Roles)
- "Application Developers who are Harbor system administrators" (see Harbor Managing Users)
- "Application Developers who are Kubernetes admins" (see Kubernetes user-facing roles)
- "Application Developers with Kubernetes edit permissions" (see Kubernetes user-facing roles)
Do NOT use "Super Application Developer", "user-admin", "user-view", etc.

See also:

Cluster¶

Can refer to a Kubernetes Cluster, a PostgreSQL cluster, a Redis cluster, a RabbitMQ cluster, an OpenSearch Cluster, etc.

Usage notes:

If it's not clear from the context what kind of Cluster you refer to, please spell it out. E.g., "The PostgreSQL Cluster runs inside the Workload Cluster." instead of "The Cluster runs inside the Workload Cluster."

See also:

Contributor¶

Someone who makes Compliant Kubernetes better by providing code, documentation, feedback. Contributors make their work visible by raising issues and creating pull requests.

See also:

Contributor Guide

Customer¶

Someone who benefits from Compliant Kubernetes via a commercial agreement.

Usage notes:

Do NOT use "Customer" to refer figuratively to Application Developer. Although we are big fans of a customer-driven mindset, there are several way to deliver Compliant Kubernetes commercially. Hence, this usage of the word "Customer" is confusing.
Do NOT use "Customer" to refer figuratively to End User. Although we are big fans of a customer-driven mindset, there are several way to deliver Compliant Kubernetes commercially. Hence, this usage of the word "Customer" is confusing.
Do NOT use "Data Controller", "Data Processor" or "Data Sub-processor". Determining which entity fulfills these GDPR concepts is usually done via a Data Protection Agreement (DPA). See EDPB Guidelines 07/2020 on the concepts of controller and processor in the GDPR.

See also:

Customer on Wikipedia.

End User¶

Ultimate user of the Application deployed on top of Kubernetes.

Usage notes:

Spell "End User" when used as noun, "end-user" when used as adjective. E.g., "good end-user experience" versus "good experience to the End User".
Do NOT use "Application User" to refer to the End User.
Platform Services, like Grafana, Harbor and OpenSearch, are meant for Application Developers and not End Users.

See also:

End User on Wikipedia

Environment¶

One instance of a Compliant Kubernetes deployment. One Environment is compose of two Kubernetes Clusters, the Management Cluster and Workload Cluster.

Usage notes:

Make sure to distinguish between Environment and Cluster.

Kubernetes Cluster¶

A set of worker machines, called nodes, that run containerized applications. Every cluster has at least one worker node.

Usage notes:

Prefer Workload Cluster or Management Cluster to avoid confusion.

See also:

Identity Provider¶

An Identity Provider (IdP) is a system that offers user authentication as a service. Examples include:

Keycloak
Microsoft Entra ID previously known as Azure Active Directory
Google Identity
jumpcloud

Usage notes:

Do NOT use "Authentication Provider"
Dex is a "Federated OpenID Connect Provider". Hence, it is okay to call it a "Federated Identity Provider".

See also:

Identity provider on Wikipedia

Infrastructure Provider¶

A supplier of Virtual or Bare-metal Machines, networks, load balancers, block storage and object storage.

Usage notes:

Do NOT use "Data Processor" or "Data Sub-processor". Determining which entity fulfills these GDPR concepts is usually done via a Data Protection Agreement (DPA). See EDPB Guidelines 07/2020 on the concepts of controller and processor in the GDPR.

See also:

Usage notes:

Do NOT use "Cloud Provider", as this is easily confused with "Platform-as-a-Service Cloud Provider".

Management Cluster¶

A Kubernetes cluster hosting some platform components.

Usage notes:

Do NOT use "Service Cluster". That terms is poorly recognized and hereby deprecated.
SC and sc may be used to preserve backwards compatibility. Acceptable usage includes code and command-line tools. Unacceptable usage include documentation.

See also:

Maintainer¶

"Those contributors who lead an open source project." Elastisys is Maintainer of Compliant Kubernetes.

Usage notes:

Do NOT use "Creators" nor "Community Leaders".

See also:

Open source Maintainers on Linux Foundation

Platform Administrator¶

The people who operate Compliant Kubernetes and Additional Platform Services.

Usage notes:

Do NOT use "Operator" to refer to "Platform Administrator". Such usage is confusing due to the Operator pattern.
It's okay to use "admin" or "administrator", if it's clear from the context that we refer to the Platform Administrator.

See also:

Certified Kubernetes Administrator (CKA)

Service Endpoint¶

Interface exposed via the network for accessing Compliant Kubernetes functionality. Endpoints include Harbor, OpenSearch, Grafana, Dex and the Workload Cluster Kubernetes API.

Usage notes:

Do NOT use "Webportals" or "Service Access Points".

See also:

API on Wikipedia

Workload Cluster¶

A Kubernetes cluster hosting the Application which is used by the End User.

See also: