πŸ“šBook Signing at KubeCon EU 2026Meet us at Booking.com HQ (Mon 18:30-21:00) & vCluster booth #521 (Tue 24 Mar, 12:30-1:30pm) β€” free book giveaway!RSVP Booking.com Event
KubernetesRecipes
Configuration beginner ⏱ 10 minutes K8s 1.21+

Kubernetes Downward API: Pod Metadata in Env

Expose pod metadata to containers using Kubernetes Downward API. Access pod name, namespace, node name, labels, annotations.

By Luca Berton β€’ β€’ πŸ“– 5 min read

πŸ’‘ Quick Answer: The Downward API exposes pod/container metadata via environment variables (fieldRef) or volume files. Use fieldRef for pod name, namespace, node name, labels, and annotations. Use resourceFieldRef for CPU/memory requests and limits.

The Problem

Your application needs to know:

  • Which pod it’s running in (for logging, metrics)
  • Which node it’s on (for topology-aware decisions)
  • Its own resource limits (for tuning thread pools, heap size)
  • Its labels/annotations (for dynamic configuration)

But hardcoding this breaks portability. The Downward API injects it automatically.

The Solution

Environment Variables with fieldRef

apiVersion: v1
kind: Pod
metadata:
  name: myapp
  labels:
    app: myapp
    version: v2
  annotations:
    team: platform
spec:
  containers:
    - name: app
      image: myapp:1.0.0
      env:
        # Pod metadata
        - name: POD_NAME
          valueFrom:
            fieldRef:
              fieldPath: metadata.name
        - name: POD_NAMESPACE
          valueFrom:
            fieldRef:
              fieldPath: metadata.namespace
        - name: POD_IP
          valueFrom:
            fieldRef:
              fieldPath: status.podIP
        - name: NODE_NAME
          valueFrom:
            fieldRef:
              fieldPath: spec.nodeName
        - name: SERVICE_ACCOUNT
          valueFrom:
            fieldRef:
              fieldPath: spec.serviceAccountName
        - name: HOST_IP
          valueFrom:
            fieldRef:
              fieldPath: status.hostIP
        - name: POD_UID
          valueFrom:
            fieldRef:
              fieldPath: metadata.uid

        # Resource limits
        - name: CPU_REQUEST
          valueFrom:
            resourceFieldRef:
              containerName: app
              resource: requests.cpu
        - name: CPU_LIMIT
          valueFrom:
            resourceFieldRef:
              containerName: app
              resource: limits.cpu
        - name: MEMORY_LIMIT
          valueFrom:
            resourceFieldRef:
              containerName: app
              resource: limits.memory
              divisor: "1Mi"  # Output in MiB

      resources:
        requests:
          cpu: "250m"
          memory: "256Mi"
        limits:
          cpu: "1"
          memory: "512Mi"

Volume Files (Labels and Annotations)

apiVersion: v1
kind: Pod
metadata:
  name: myapp
  labels:
    app: myapp
    version: v2
    environment: production
  annotations:
    build/commit: "abc123"
    team: platform
spec:
  containers:
    - name: app
      image: myapp:1.0.0
      volumeMounts:
        - name: podinfo
          mountPath: /etc/podinfo
          readOnly: true
  volumes:
    - name: podinfo
      downwardAPI:
        items:
          - path: "labels"
            fieldRef:
              fieldPath: metadata.labels
          - path: "annotations"
            fieldRef:
              fieldPath: metadata.annotations
          - path: "name"
            fieldRef:
              fieldPath: metadata.name
          - path: "namespace"
            fieldRef:
              fieldPath: metadata.namespace
          - path: "cpu_limit"
            resourceFieldRef:
              containerName: app
              resource: limits.cpu
              divisor: "1m"  # millicores
# Inside the container:
cat /etc/podinfo/labels
# app="myapp"
# environment="production"
# version="v2"

cat /etc/podinfo/name
# myapp

cat /etc/podinfo/cpu_limit
# 1000

Available Fields

fieldPathTypeDescription
metadata.nameenv/volPod name
metadata.namespaceenv/volPod namespace
metadata.uidenv/volPod UID
metadata.labelsvol onlyAll labels
metadata.labels['key']envSpecific label
metadata.annotationsvol onlyAll annotations
metadata.annotations['key']envSpecific annotation
spec.nodeNameenvNode the pod runs on
spec.serviceAccountNameenvService account
status.podIPenvPod IP address
status.hostIPenvNode IP address

Practical: Java Heap from Memory Limit

env:
  - name: MEMORY_LIMIT_MB
    valueFrom:
      resourceFieldRef:
        resource: limits.memory
        divisor: "1Mi"
  - name: JAVA_OPTS
    value: "-Xmx$(MEMORY_LIMIT_MB)m -Xms$(MEMORY_LIMIT_MB)m"

Practical: Structured Logging with Pod Identity

env:
  - name: POD_NAME
    valueFrom:
      fieldRef:
        fieldPath: metadata.name
  - name: POD_NAMESPACE
    valueFrom:
      fieldRef:
        fieldPath: metadata.namespace
  - name: NODE_NAME
    valueFrom:
      fieldRef:
        fieldPath: spec.nodeName
# App uses these for structured log context:
# {"pod": "myapp-6f7b9c4d5-abc12", "ns": "production", "node": "worker-3", "msg": "..."}

Architecture

graph TD
    A[Pod Spec] -->|fieldRef| B[kubelet]
    B -->|injects| C[Container Env Vars]
    B -->|writes| D[Downward API Volume]
    
    E[Container] -->|reads env| C
    E -->|reads files| D
    
    F[Labels/Annotations change] -->|auto-updates| D
    F -.->|NOT updated| C

Note: Volume files update when labels/annotations change. Environment variables are set at container start and never change.

Common Issues

IssueCauseFix
Env var emptyPod not yet scheduled (status fields)Use volume for dynamic fields
Labels not in envmetadata.labels only works in volumesUse metadata.labels['key'] for env
Memory shows bytesNo divisor setAdd divisor: "1Mi" or "1Gi"
Value not updatingEnv vars are static after startUse volume mount (auto-updates)
fieldPath invalidUsing unsupported fieldCheck available fields table above

Best Practices

  1. Use env vars for identity (POD_NAME, NAMESPACE) β€” simple, fast access
  2. Use volumes for labels/annotations β€” they auto-update and support all keys
  3. Set divisor for resource fields β€” 1Mi for memory, 1m for CPU millicores
  4. Inject POD_NAME and NAMESPACE everywhere β€” essential for observability
  5. Don’t rely on env vars for dynamic values β€” they’re set once at container start

Key Takeaways

  • Downward API exposes pod metadata without external API calls
  • fieldRef for pod info (name, namespace, IP, node); resourceFieldRef for resources
  • Environment variables: static, set at start. Volumes: dynamic, auto-update
  • Labels/annotations as a whole are volume-only; specific keys work as env vars
  • Essential for structured logging, auto-scaling tuning, and topology awareness
#downward-api #environment-variables #metadata #fieldref #pod-info
Luca Berton
Written by Luca Berton

Principal Solutions Architect specializing in Kubernetes, AI/GPU infrastructure, and cloud-native platforms. Author of Kubernetes Recipes and creator of CopyPasteLearn courses.

🌐 πŸ’Ό πŸ’»

πŸŽ“ Deepen Your Skills β€” Hands-on Courses

⚑
Ansible Quickstart

Automate Kubernetes node configuration and cluster bootstrapping with Ansible.

Start Learning β†’

Courses by CopyPasteLearn.com β€” Learn IT by Doing

Kubernetes Recipes book cover

Want More Kubernetes Recipes?

This recipe is from Kubernetes Recipes, our 750-page practical guide with hundreds of production-ready patterns.

Get the Book β†’ ← More Configuration Recipes
← Back to All Recipes
Luca Berton Ansible Pilot Ansible by Example Open Empower K8s Recipes Terraform Pilot CopyPasteLearn ProteinLens