Document user namespace changes in v1.27 (KEP-127)

[rata]

Placeholder PR to document the changes in Kubernetes v1.27 for user namespaces (KEP-127)

cc @giuseppe

[netlify]

✅ Pull request preview available for checking

Built without sensitive environment variables

Name	Link
🔨 Latest commit	4986795
🔍 Latest deploy log	https://app.netlify.com/sites/kubernetes-io-main-staging/deploys/6408acf52334740007aecc98
😎 Deploy Preview	https://deploy-preview-39860--kubernetes-io-main-staging.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify site settings.

[reylejano]

Remember to change the base branch and target the dev-1.27 branch
/milestone 1.27
/cc @mickeyboxell

[rata]

@reylejano thanks, fixed that now!

[mickeyboxell]

Hi @rata 👋 please take a look at Documenting for a release - PR Ready for Review to get your PR ready for review as soon as possible. 01:00 UTC Wednesday 22nd March 2023 / 17:00 PDT Tuesday 21st March 2023 is the official deadline.

This PR will need a doc review by Tuesday 4th April 2023 to get this into the release. Please reach out to required SIGs to get their review. Thank you!

[rata]

@mickeyboxell thanks, this should be ready for review now!

[rata]

Pushed a new revision, PTAL

[tengqm]

/label tide/merge-method-squash
/lgtm

[k8s-ci-robot]

LGTM label has been added.

Git tree hash: 7b641c7f1ad38026c10fdaab06d84eb4583e7d30

[rata]

@tengqm Can you PTAL?

I've added a new commit duplicating a warning about versions. It seems it is better to be super clear about this and not have it only in some pages and not others.

I'm trying to err on the side of being very clear as a learning from another (not related to this) bug report where doc was the issue.

Did it as another commit, also, as you selected the squash merge method

[tengqm]

/approve

[k8s-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: tengqm

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• content/en/OWNERS [tengqm]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[rata]

@tengqm thanks, now the lgtm is missing :-D

[netlify]

👷 Deploy Preview for kubernetes-io-vnext-staging processing.

Name	Link
🔨 Latest commit	a3c840e
🔍 Latest deploy log	https://app.netlify.com/sites/kubernetes-io-vnext-staging/deploys/6421a6aa069a0800073f8d8b

[rata]

Updated this PR to address similar comments that were raised in this other PR and also applied here: #40264

[sftim]

Suggested change

	* All the filesystems used in the pod need support for idmap mounts.
	* Every volume that is mounted into any container in the pod must support idmap mounts.

[rata]

This smells slightly incorrect. What supports idmap mount is the filesystem, not the volume. It doesn't matter if it is an EBS volume, a local disk volume or what. The only thing that matters is that the filesystem used in that volume supports idmap mounts in the kernel running on the host.

So, what about this instead?

* All the filesystems used in the pod's volumes must support idmap mounts.

[rata]

Changed it to that, let me know what you think

[rata]

@sftim fixed all, thanks! PTAL

[tengqm]

/lgtm
reapplied.

[k8s-ci-robot]

LGTM label has been added.

Git tree hash: 47c8f361630764ce0c0d919700424947b8306475