Bug: Operator mounts BSL credential secret into velero pod breaking multiple credential support #452
Comments
|
Issues go stale after 90d of inactivity. Mark the issue as fresh by commenting If this issue is safe to close now please do so with /lifecycle stale |
openshift-ci
bot
added
the
lifecycle/stale
|
Stale issues rot after 30d of inactivity. Mark the issue as fresh by commenting If this issue is safe to close now please do so with /lifecycle rotten |
openshift-ci
bot
added
lifecycle/rotten
|
Rotten issues close after 30d of inactivity. Reopen the issue by commenting /close |
|
@openshift-bot: Closing this issue. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
Contact Details
No response
Describe bug
There is a use case where a user wants to use 2 different secrets providing credentials for the BSL and VSL. When this happens, the secret that gets mounted into the velero pod must be the VSL secret.
In our API, if a user specifies a secret in the BSL spec, then we assume this is the single set of credentials to be used with Velero, and we automatically mount this secret into the velero pod. With this approach, we will never be able to support the use case above.
I propose that we allow a new config field that can explicitly set the credentials to be used for the VSL (or maybe just mention this is the secret that gets mounted in the pod itself) so that if a user wants to specify a secret for the BSL, we can still mount a different secret in the Velero pod until the VSL API can support specifying credentials as well.
What happened?
A bug happened!
OADP Version
0.4.x (Beta)
OpenShift Version
4.9
Velero pod logs
No response
Restic pod logs
No response
Operator pod logs
No response
New issue
The text was updated successfully, but these errors were encountered: