[Feature Request] Reference API token from a kubernetes secret object #172
Assignees
Labels
Comments
|
@caryli-ps can we look into this? |
sdodsley
added
💡 enhancement
|
This just came up for us as well, we noticed that there was no way to get the API Token from a secret... It would require some restructuring, probably :( |
|
@TJM I believe we now hold these API tokens in a secret but are not held in a secret that can be accessed by the Helm chart. This is still an open RFE |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Currently, the API token is specified as a string literal in
PSOPluginobject inpurestorage.com/v1.Since we check in all cluster objects in a git repository, this would mean that we have to expose the token to everyone who has read permission to the repository. This is not very secure.
Kubernetes secret is designed for managing sensitive information, and there are many options to allow us to safely version control secrets in git in encrypted form.
Can we allow the token to be referenced as a, for example, v1.SecretKeySelector?
The text was updated successfully, but these errors were encountered: