Kubernetes API

Download schema

Kubernetes is an open-source platform that enables developers to manage their containerized applications. Scaleway Kubernetes Kapsule and Kosmos are powerful tools to help you manage your containerized workloads and services.

They both provide a managed environment for creating, configuring, and running clusters of pre-configured machines.

The primary difference between Kapsule and Kosmos is that Kapsule clusters are composed solely of Scaleway Instances. In contrast, Kosmos is a managed Multi-Cloud Kubernetes Engine that allows you to connect Instances and virtual or dedicated servers from any cloud provider to a single managed Control-Plane.

Concepts

Refer to our dedicated concepts pageOpen in new context to find definitions of all Kubetnetes-related terminology.

Quickstart

Configure your environment variables. Note: This is an optional step that seeks to simplify your usage of the Kapsule and Kosmos API.

Code
export SCW_ACCESS_KEY="<API access key>"
export SCW_SECRET_KEY="<API secret key>"
export SCW_REGION="<Scaleway service region>"
export SCW_PROJECT_ID="<Scaleway Project ID>"
export SCW_PRIVATE_NETWORK_ID="<Scaleway Private Network ID>"

Edit the POST request payload you will use to create your Kubernetes cluster. Replace the parameters in the following example:


Code
{
  "project_id": "$SCW_PROJECT_ID",
  "private_network_id": "$SCW_PRIVATE_NETWORK_ID",
  "type": "string",
  "name": "string",
  "description": "string",
  "tags": [
    "string"
  ],
  "version": "string",
  "cni": "unknown_cni",
  "pools": [
    {
      "name": "string",
      "node_type": "string",
      "size": "integer",
      "tags": [
        "string"
      ],
      "zone": "string",
      "root_volume_type": "default_volume_type",
      "root_volume_size": "integer"
    }
  ]
}

Parameter	Description
`project_id`	The ID of the Project you want to create your Kubernetes cluster in. To find your Project ID you can consult the Scaleway consoleOpen in new context.
`type`	The type of the cluster (possible values are `kapsule`, `multicloud`, `kapsule-dedicated-X`, `multicloud-dedicated-X` - `X` can be `4`, `8` or `16`).
`name`	REQUIRED Name of the cluster.
`description`	Description of the cluster.
`tags`	Tags associated with the cluster.
`version`	REQUIRED Kubernetes version of the cluster.
`cni`	REQUIRED Container Network Interface (CNI) plugin that will run on the cluster. The default value is `unknown_cni`. (possible values are `cilium`, `cilium_native`, `calico` for `kapsule` and `kilo` for `multicloud`)
`pools`	Pools to be created along with the cluster.
`pools.name`	REQUIRED Name of the pool.
`pools.node-type`	REQUIRED The node type of the Scaleway Instance wanted for the pool.
`pools.size`	REQUIRED The number of nodes in the pool.
`pools.tags`	Tags associated with the pool. See managing tagsOpen in new context.
`pools.zone`	Availability zone in which the pools will be deployed in.
`pools.root_volume_type`	The root volume type. The default value is `default_volume_type`.
`pools.root_volume_size`	The system volume disk size in bytes.
`private_network_id`	Private network ID for internal cluster communication.

Create a Kapsule cluster and node pool by running the following command. Make sure you include the payload you edited in the previous step.

Code
curl -X POST \
  -H "X-Auth-Token: $SCW_SECRET_KEY" \
  "Content-Type: application/json" \
  "https://api.scaleway.com/k8s/v1/regions/$SCW_REGION/clusters" \
  -d "{
        \"project_id\": \"$SCW_PROJECT_ID\",
        \"private_network_id\": \"$SCW_PRIVATE_NETWORK_ID\",
        \"type\": \"kapsule\",
        \"name\": \"MyFirstKapsuleCluster\",
        \"description\": \"My first Kapsule Cluster\",
        \"tags\": [
          \"kapsule\",
          \"kubernetes\"
        ],
        \"version\": \"1.31.2\",
        \"cni\": \"unknown_cni\",
        \"pools\": [
          {
            \"name\": \"MyFirstKapsulePool\",
            \"node_type\": \"PLAY2-MICRO\",
            \"size\": \"2\",
            \"tags\": [
              \"pool\"
            ],
            \"zone\": \"fr-par-1\",
            \"root_volume_type\": \"default_volume_type\",
            \"root_volume_size\": \"20000000000\"
          }
        ]
      }"

List your Kapsule clusters.

Code
curl -X GET \
  -H "Content-Type: application/json" \
  -H "X-Auth-Token: $SCW_SECRET_KEY" \
  https://api.scaleway.com/k8s/v1/regions/$SCW_REGION/clusters

You will see detailed information about your clusters.

Download the kubeconfig file for your cluster.

Code
curl -X GET \
  -H "Content-Type: application/json" \
  -H "X-Auth-Token: $SCW_SECRET_KEY" \
  https://api.scaleway.com/k8s/v1/regions/$SCW_REGION/clusters/$SCW_CLUSTER_ID/kubeconfig

Tip

Add ?dl=1 at the end of the URL to directly get the base64-decoded kubeconfig. If not, the kubeconfig will be base64-encoded.

Connect to your clusterOpen in new context using kubectl.

Delete your cluster.

Code
curl -X GET -H "Content-Type: application/json" \
  -H "X-Auth-Token: $SCW_SECRET_KEY" https://api.scaleway.com/k8s/v1/regions/$SCW_REGION/clusters/$SCW_CLUSTER_ID

Requirement

To perform the following steps, you must first ensure that:

you have an account and are logged into the Scaleway consoleOpen in new context
you have created an API keyOpen in new context and that the API key has sufficient IAM permissionsOpen in new context to perform the actions described on this page.
you have installed curlOpen in new context

Technical information

Kubernetes Kapsule provides features such as:

Persistent Volume Claims (PVC) are available through Scaleway Block Volumes.
Pool autoscaling and autohealing is available.
Kubernetes auto upgrades features is available.

Regions

Scaleway's infrastructure is spread across different regions and Availability ZonesOpen in new context.

Kubernetes Kapsule and Kosmos are available in the Paris, Amsterdam and Warsaw regions, which are represented by the following path parameters:

fr-par
nl-ams
pl-waw

Versions

Kubernetes Kosmos and Kapsule supports at least the latest version of the last 3 major Kubernetes releases.

Technical limitations

The following limitations should be taken into account when using the Kubernetes API:

The maximum number of pods per node is 110, as per the official k8s project recommendation (configurable).
The maximum number of volumes (PVC) per node is 15.
The maximum number of nodes per cluster varies from 150 to up to 500 (depending on the control plane tier).
VPC LimitationsOpen in new context may restrict the number of nodes and loadbalancers.
Private network must not conflict with the 198.18.0.0/15 subnet.
Users cannot expose port 53 (DNS) to hostPort or in hostNetwork mode.
Security groups set to drop all inbound must have stateful group enabled.
Security groups must have ports 80 and 443 left open in outbound.
For Kosmos clusters or if ACLs are not activated (no network tab in console), ports 8132 and 6443 must also be opened.
Kilo CNI (kosmos nodes) also needs UDP port 51820 to be open.

The following limitations should be acknowledged, while Scaleway is actively working on planned solutions to address them:

Dual Stack IPv4/IPv6 is not (yet) available.
Read Write Many / Read Only Many are not (yet) available.
Kubernetes control plane network access is managed by a Load Balancer located on ZONE-1. In the event of a global failure for this AZ, the Control Plane will be unreachable.

The following limitations should be taken into account when setting custom settings for Pod & Service CIDRs and DNS IP:

Setting these may reduce the number of nodes and pods per nodes the cluster can handle.
The Pod and Service CIDRs must not conflict between them.
The Pod & Service CIDRs must not conflict with the Private Networks' subnets of the VPC attached to the cluster.
The Pod & Service CIDRs must not conflict with the routes set in the VPC attached to the cluster.
The Pod & Service CIDRs subnets must be part of the RFC 1918 and RFC 6598 (subnet included in: 10.0.0.0/8 or 172.16.0.0/12 or 192.168.0.0/16 or 100.64.0.0/10).
Mask /16 minimum for the Pod CIDR (not above 16)
Mask /24 minimum for the Service CIDR (not above 24)
The Service DNS IP must be included in the Service CIDR

Going further

For more help using Kubernetes Kapsule and Kosmos, check out the following resources:

Our main documentationOpen in new context
The #k8s channel on our Slack CommunityOpen in new context
Our support ticketing systemOpen in new context.