Investigation: Use Kubernetes User Namespaces to provide sudo access inside workspace

MR: Pending

Description

As a user or stakeholder, I want to use native Kubernetes features to enable sudo access inside a workspace.

This issue will be an investigation into this approach.

Acceptance Criteria

Decision if this is an acceptable/feasible solution.
- Yes
Steps required to provide support for this in our solution.
- Documented in #468290 (comment 1968364015)
Are there any nuances/challenges that the user should be aware about.
- This is a beta feature gate in Kubernetes 1.30 which is disabled by default. Anyone wanting to use this right now needs to have a self-managed Kubernetes cluster since the cloud-managed Kubernetes clusters do not provide a way to enable feature gates.

Technical Requirements

TODO: Fill out or delete (optional) [If applicable, please list out any technical requirements for this feature/enhancement.]

Design Requirements

TODO: Fill out or delete (optional) [If applicable, please provide a link to the design specifications for this feature/enhancement.]

Impact Assessment

TODO: Fill out or delete (optional) [Please describe the impact this feature/enhancement will have on the user experience and/or the product as a whole.]

User Story

TODO: Fill out or delete (optional) [Provide a user story to illustrate the use case for this feature/enhancement. Include examples to help communicate the intended functionality.]

Edited Jun 26, 2024 by Vishal Tak