Join GitHub today
GitHub is home to over 36 million developers working together to host and review code, manage projects, and build software together.Sign up
Feat(clouddriver/halyard): Support larger number of accounts for Kubernetes Clouddriver #3959
Deploying HA mode for Clouddriver reaches secret size limit with small number of account when the accounts are configured with namespace list and omitkinds list. Need to have the ability to configure 100s of accounts without hitting this limit from kubernetes secrets (1MB max)
Clouddriver configured in HA environment deployed using Halyard
Halyard configuration and deploy of Kubernetes accounts
hal deploy generates clouddriver.yml, clouddriver-rw.yml (-ro.yml, -caching.yml) with accounts configured. With each account configuration ~1kB, and local Kubernetes deployment restricting secret to 250kB limits the number of accounts to less than 100 that can be configured and deployed using Halyard.
ConfigMaps have higher limits for sizes and can be used for account configurations for higher limit than the secrets. Each account can be tagged as insecure that can then be allocated to configmap with clouddriver-insecure.yml
Currently, Halyard creates a secret with clouddriver.yml, clouddriver-rw.yml with same information doubling the size of the secret which can be removed and apply the accounts to only one of the configuration files.
If it is possible to zip the secret then it will allow for much larger hal config file than it is supported now.