devfile
diff --git a/‎apis/controller/v1alpha1/devworkspaceoperatorconfig_types.go‎
Lines changed: 5 additions & 0 deletions b/‎apis/controller/v1alpha1/devworkspaceoperatorconfig_types.go‎
Lines changed: 5 additions & 0 deletions
diff --git a/‎apis/controller/v1alpha1/zz_generated.deepcopy.go‎
Lines changed: 5 additions & 0 deletions b/‎apis/controller/v1alpha1/zz_generated.deepcopy.go‎
Lines changed: 5 additions & 0 deletions
diff --git a/‎controllers/workspace/devworkspace_controller.go‎
Lines changed: 3 additions & 0 deletions b/‎controllers/workspace/devworkspace_controller.go‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎deploy/bundle/manifests/controller.devfile.io_devworkspaceoperatorconfigs.yaml‎
Lines changed: 63 additions & 0 deletions b/‎deploy/bundle/manifests/controller.devfile.io_devworkspaceoperatorconfigs.yaml‎
Lines changed: 63 additions & 0 deletions
diff --git a/‎deploy/deployment/kubernetes/combined.yaml‎
Lines changed: 63 additions & 0 deletions b/‎deploy/deployment/kubernetes/combined.yaml‎
Lines changed: 63 additions & 0 deletions
diff --git a/‎deploy/deployment/kubernetes/objects/devworkspaceoperatorconfigs.controller.devfile.io.CustomResourceDefinition.yaml‎
Lines changed: 63 additions & 0 deletions b/‎deploy/deployment/kubernetes/objects/devworkspaceoperatorconfigs.controller.devfile.io.CustomResourceDefinition.yaml‎
Lines changed: 63 additions & 0 deletions
diff --git a/‎deploy/deployment/openshift/combined.yaml‎
Lines changed: 63 additions & 0 deletions b/‎deploy/deployment/openshift/combined.yaml‎
Lines changed: 63 additions & 0 deletions
@@ -183,6 +183,11 @@ type WorkspaceConfig struct {
 	// the value "0" should be used. By default, the memory limit is 128Mi and the memory request is 64Mi.
 	// No CPU limit or request is added by default.
 	DefaultContainerResources *corev1.ResourceRequirements `json:"defaultContainerResources,omitempty"`
+	// ContainerResourceCaps defines the maximum resource requirements enforced for all
+	// workspace containers. If a container specifies higher limits or requests, they
+	// will be capped at these maximum values. This is not applied to initContainers or
+	// the projectClone container.
+	ContainerResourceCaps *corev1.ResourceRequirements `json:"containerResourceCaps,omitempty"`
 	// PodAnnotations defines the metadata.annotations for DevWorkspace pods created by the DevWorkspace Operator.
 	PodAnnotations map[string]string `json:"podAnnotations,omitempty"`
 	// RuntimeClassName defines the spec.runtimeClassName for DevWorkspace pods created by the DevWorkspace Operator.
 
@@ -264,6 +264,7 @@ func (r *DevWorkspaceReconciler) Reconcile(ctx context.Context, req ctrl.Request
 		K8sClient:                   r.Client,
 		HttpClient:                  httpClient,
 		DefaultResourceRequirements: workspace.Config.Workspace.DefaultContainerResources,
+		ResourceCaps:                workspace.Config.Workspace.ContainerResourceCaps,
 	}
 
 	if wsDefaults.NeedsDefaultTemplate(workspace) {
@@ -335,6 +336,7 @@ func (r *DevWorkspaceReconciler) Reconcile(ctx context.Context, req ctrl.Request
 		workspace.Config.Workspace.ContainerSecurityContext,
 		workspace.Config.Workspace.ImagePullPolicy,
 		workspace.Config.Workspace.DefaultContainerResources,
+		workspace.Config.Workspace.ContainerResourceCaps,
 		workspace.Config.Workspace.PostStartTimeout,
 		postStartDebugTrapSleepDuration,
 	)
@@ -356,6 +358,7 @@ func (r *DevWorkspaceReconciler) Reconcile(ctx context.Context, req ctrl.Request
 		Image:     workspace.Config.Workspace.ProjectCloneConfig.Image,
 		Env:       env.GetEnvironmentVariablesForProjectClone(workspace),
 		Resources: workspace.Config.Workspace.ProjectCloneConfig.Resources,
+		Caps:      workspace.Config.Workspace.ContainerResourceCaps,
 	}
 	if workspace.Config.Workspace.ProjectCloneConfig.ImagePullPolicy != "" {
 		projectCloneOptions.PullPolicy = config.Workspace.ProjectCloneConfig.ImagePullPolicy