Skip to content
This repository has been archived by the owner on Oct 28, 2024. It is now read-only.

✨ [VC] Support Auto Reloading KUBECONFIGs from Secrets #128

Open
christopherhein opened this issue Jun 15, 2021 · 2 comments
Open

✨ [VC] Support Auto Reloading KUBECONFIGs from Secrets #128

christopherhein opened this issue Jun 15, 2021 · 2 comments
Labels
kind/feature Categorizes issue or PR as related to a new feature. lifecycle/frozen Indicates that an issue or PR should not be auto-closed due to staleness.
Milestone
v0.1.x

Comments

@christopherhein
Copy link
Contributor

User Story

As a operator I would like the syncer to auto reload changes to KUBECONFIG secrets so that the syncer can stay up to date with PKI expiry w/o intervention.

Detailed Description

In the next version of VC w/ CAPN/CAPI Support control planes are being provisioned out of cluster and linked via two annotations, along w/ the old path for native provisioning would load the KUBECONFIG bytes once then never reload unless the syncer is restarted. This happens here - https://github.com/kubernetes-sigs/cluster-api-provider-nested/blob/main/virtualcluster/pkg/syncer/conversion/helper.go#L84-L99

With the new CAPI/CAPN support this lifecycle should be automated so if CAPI expires the KUBECONFIG credentials (every 6months) that they syncer reloads the client.

Anything else you would like to add:

Hold until #81 is done.

/kind feature
/milestone v0.1.x
@k8s-ci-robot k8s-ci-robot added this to the v0.1.x milestone Jun 15, 2021
@k8s-ci-robot k8s-ci-robot added the kind/feature Categorizes issue or PR as related to a new feature. label Jun 15, 2021
@christopherhein christopherhein changed the title ✨ Support Auto Reloading KUBECONFIGs from Secrets ✨ [VC] Support Auto Reloading KUBECONFIGs from Secrets Jun 15, 2021
@k8s-triage-robot
Copy link

The Kubernetes project currently lacks enough contributors to adequately respond to all issues and PRs.

This bot triages issues and PRs according to the following rules:

  • After 90d of inactivity, lifecycle/stale is applied
  • After 30d of inactivity since lifecycle/stale was applied, lifecycle/rotten is applied
  • After 30d of inactivity since lifecycle/rotten was applied, the issue is closed

You can:

  • Mark this issue or PR as fresh with /remove-lifecycle stale
  • Mark this issue or PR as rotten with /lifecycle rotten
  • Close this issue or PR with /close
  • Offer to help out with Issue Triage

Please send feedback to sig-contributor-experience at kubernetes/community.

/lifecycle stale

@k8s-ci-robot k8s-ci-robot added the lifecycle/stale Denotes an issue or PR has remained open with no activity and has become stale. label Sep 13, 2021
@christopherhein
Copy link
Contributor Author

/remove-lifecycle stale
/lifecycle frozen

@k8s-ci-robot k8s-ci-robot added lifecycle/frozen Indicates that an issue or PR should not be auto-closed due to staleness. and removed lifecycle/stale Denotes an issue or PR has remained open with no activity and has become stale. labels Sep 13, 2021
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
kind/feature Categorizes issue or PR as related to a new feature. lifecycle/frozen Indicates that an issue or PR should not be auto-closed due to staleness.
Projects
None yet
Milestone
v0.1.x
Development

No branches or pull requests
3 participants
@christopherhein @k8s-ci-robot @k8s-triage-robot