Platform Engineering Simplified: The Power of Crossplane’s Nested Abstractions

May 8, 2025

Read time: 4 mins

Markus Schweig

Share:

In the ever-evolving landscape of cloud-native infrastructure management, Crossplane has emerged as a powerful solution that brings Kubernetes-native resource management to infrastructure orchestration. One of its most compelling features is its sophisticated nested abstraction model, which enables platform teams to create elegant, layered APIs that shield consumers from underlying complexity. It enables a whole new way of thinking about infrastructure as a product. Especially with its ability to:

  • test nested abstractions in isolation
  • driving configuration package quality increases
  • simplifying test cycles
  • and shortening feedback loops.

Let's explore how this works and why it represents a significant advancement.

The Power of Abstraction Layers

At its core, Crossplane extends the Kubernetes resource model, creating a consistent way to provision and manage everything from cloud services to observability tools and beyond. What truly sets Crossplane apart, however, is how these resources can be organized into meaningful abstraction layers.
Consider a typical enterprise platform team's challenge: they need to provide standardized, compliant infrastructure while giving application teams enough flexibility to innovate. Crossplane's abstraction model addresses this perfectly through its hierarchy.

  1. Managed Resources: These directly represent external resources (AWS S3 buckets, GCP Cloud SQL instances, etc.)
  2. Compositions: These define how abstract resources map to concrete implementations
  3. Composite Resource Definitions (XRDs): These expose the simplified API that platform consumers will use

Reference Architectures Showcase Nested Abstractions

Crossplane's reference architectures such as this platform-ref-multi-k8s brilliantly demonstrate this capability (check out the Dependencies tab). For example, a platform team might create a high-level ApplicationEnvironment XRD that, when instantiated, provisions a complete application runtime including compute resources, databases, and observability tools — all pre-configured according to organizational standards.

The magic happens when these abstractions themselves become building blocks for even higher-level abstractions. A DataPlatform might compose multiple ApplicationEnvironments along with specialized data processing resources, creating increasingly powerful capabilities while maintaining simplicity at each layer.
Excellent examples of nested configuration packages include:

Breaking Provider Dependencies

One of the most powerful aspects of Crossplane's abstraction model is how higher-level abstractions do not require direct dependencies on providers (the Kubernetes controllers that interface with external services like AWS, Azure, GCP, observability systems, and others that can be found in the Upbound Marketplace).
This means:

  1. Your platform API remains stable: Even when underlying implementations change
  2. Consumers are shielded from provider-specific details: They work with business-domain concepts, not cloud primitives
  3. Multi-cloud implementations become seamless: The same high-level resource can be fulfilled differently across environments

For example, a Database XRD could be fulfilled by AWS RDS in production, a containerized PostgreSQL instance in development, and a completely different offering in another cloud — all without application developers needing to understand or modify their resource requests.

Building a Platform API That Embeds Best Practices

The true value of Crossplane's nested abstractions emerges when platform teams create a cohesive Platform API tailored to their organization's needs. This API becomes the contract between platform providers and consumers, with Compositions doing the heavy lifting behind the scenes.
Within these Compositions, platform engineers can encode

  • Corporate guidance: Standardized tagging, naming conventions, and architectural patterns
  • Governance controls: Resource limits, approval workflows, and audit trails
  • Compliance requirements: Security configurations, data sovereignty rules, and regulatory needs

all while presenting a clean, simplified interface to their users.

Why Crossplane Shines

Crossplane's abstraction model provides several distinct advantages for platform engineering:

  1. Native Kubernetes integration: Works with the same tools, patterns, and security models teams already use
  2. Dynamic reconfiguration: Changes to Compositions can update resources without requiring consumer intervention
  3. Separation of concerns: Platform engineers focus on implementations; application teams focus on requirements
  4. Continuous reconciliation: Resources are constantly monitored and reconciled against desired state
  5. Extensibility: The control plane itself can be extended with custom controllers and resources

Crossplane's nested abstractions create a natural separation between the platform API (what users see) and the implementation details (how the platform team fulfills those requests) similar to programming language code library hierarchies.

Real-World Applications

In practice, this abstraction model enables powerful workflows:

  • A platform team can for instance create a DatabaseService that automatically provisions not just the database but related monitoring, backup solutions, and security controls that originate from previously built configuration packages.
  • Application teams can request resources using simple Composite Resource Definitions (XRDs) that match their business domain
  • Operations can implement cross-cutting changes (like security patches or compliance updates) by modifying Compositions without disrupting consumers

Conclusion

Crossplane's nested abstraction capabilities transform how organizations approach infrastructure management. By extending the Kubernetes resource model and enabling sophisticated abstraction hierarchies, it allows platform teams to create APIs that are both powerful and approachable.

For platform developers looking to build internal developer platforms that balance standardization with flexibility, Crossplane offers an elegant solution. Its abstraction model doesn't just simplify resource provisioning — it enables a whole new way of thinking about infrastructure as a product, with clear interfaces between providers and consumers.

As organizations continue to mature their cloud-native strategies, Crossplane's ability to create, compose, and continuously reconcile nested abstractions makes it an increasingly compelling choice for modern platform engineering teams.

Join the Crossplane Community Slack

Subscribe to the Upbound Newsletter