Skip to content

Postgres Operator UI does not reload Kubernetes tokens #2981

New issue
New issue
Open
#2982
Open
Postgres Operator UI does not reload Kubernetes tokens#2981
#2982
@baarde

Description

@baarde
baarde
opened on Nov 12, 2025

Kubernetes now issues short lived tokens.

When the --service-account-extend-token-expiration flag is set to true (which seems to still be the default for many implementations), service account tokens are valid for one year, meaning the Postgres Operator UI pod is likely to get restarted/recreated before its token expires.

However, on AKS clusters running Kubernetes v1.30.0 and later, the --service-account-extend-token-expiration flag is set to false and service account tokens expire after one hour.

  • Which image of the operator are you using? ghcr.io/zalando/postgres-operator-ui:v1.14.0
  • Where do you run it? AKS
  • Are you running Postgres Operator in production? yes (but not on AKS)
  • Type of issue? Bug

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions