[FEATURE]: CSI-PowerMax - Mount credentials secret to the reverse-proxy (Customer Ask) #1614
Labels
area/csi-powermax
Issue pertains to the CSI Driver for Dell EMC PowerMax
type/feature
A feature. This label is applied to a feature issues.
Milestone
Comments
rajkumar-palani
added
type/feature
jooseppi-luna
changed the title
9 tasks
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Feature – Today, the csi-reverseproxy accesses Unisphere credentials by using a K8s api call to read them from a configmap, unlike all the other drivers, which mount a secret as a volume in the driver pod.
This feature brings the reverseproxy in line with all the other drivers – the configmap will be converted to a secret and mounted to the controller pod as a volume. The
Benefit hypothesis – Moving to a mounted secret will make csi-powermax consistent with other drivers, and will allow us to integrate with Hashicorp Vault, which uses a sidecar injector that can inject secrets directly into the pod, not into the k8s secret object (cf. email).
The text was updated successfully, but these errors were encountered: