Sections in this category

Cluster Controller

Kubecost’s cluster controller contains Kubecost’s automation features, and thus has write permission to certain resources on your cluster.

Cluster controller enables actions like:

This document shows you how to setup and enable this functionality in the Kubecost product.

Note: Cluster controller supports GKE and EKS clusters and is currently in ALPHA.

GKE Setup

The following command performs the steps required to set up a service account. More info

/bin/bash -c "$(curl -fsSL" -- <Project ID> <Service Account Name> <Namespace> cluster-controller-service-key

To use this setup script supply the following required parameters:

  • Project ID: The GCP project identifier you can find via: gcloud config get-value project
  • Service Account Name: The desired service account name to create, e.g. kubecost-controller
  • Namespace: This should be the namespace which Kubecost will be installed, e.g kubecost
  • Secret Name: This should always be set to cluster-controller-service-key, which is the secret name mounted by the Kubecost helm chart.

EKS Setup

Create a new User with AutoScalingFullAccess permissions. Create a new file, service-key.json, and use the access key id and secret access key to fill out the following template:

    "aws_access_key_id": "<ACCESS_KEY_ID>",
    "aws_secret_access_key": "<SECRET_ACCESS_KEY>"

Then run the following to create the secret:

$ kubectl create secret generic cluster-controller-service-key -n <NAMESPACE> --from-file=service-key.json


Once the secret has been successfully created containing the provider service key, you can enable the cluster-controller in the helm chart by finding the clusterController config block and setting enabled: true

# Kubecost Cluster Controller for Right Sizing and Cluster Turndown
    enabled: true

You may also enable via --set when running helm install:

--set clusterController.enabled=true

Edit this doc on GitHub