Search before asking
Description
The Fluss Helm chart currently renders SASL credentials directly from values.yaml into a Helm-managed Secret. This forces operators to either commit plaintext passwords to values.yaml (and the Helm release storage) or fork the chart to integrate with external secret sources like External Secrets Operator.
The chart should allow each listener to reference a pre-existing Kubernetes Secret for its credentials, keeping plaintext passwords out of the Helm release and out of values.yaml.
Willingness to contribute
Search before asking
Description
The Fluss Helm chart currently renders SASL credentials directly from values.yaml into a Helm-managed Secret. This forces operators to either commit plaintext passwords to values.yaml (and the Helm release storage) or fork the chart to integrate with external secret sources like External Secrets Operator.
The chart should allow each listener to reference a pre-existing Kubernetes Secret for its credentials, keeping plaintext passwords out of the Helm release and out of values.yaml.
Willingness to contribute