vault-secrets-operator icon indicating copy to clipboard operation
vault-secrets-operator copied to clipboard

Published 20 hours ago verified publisher icon hashicorp

Fix AppRole secret reference

Open ownercoder opened this issue 2 years ago • 1 comments

Hi!

AppRole has SecretRef field, which contains name of the k8s secret. When i create AuthStatic in different namespace, i can't get secret, because operator try to get secret from current namespace.

For example: VaultAuth with name default placed in vault-secrets-operator namespace, also i've created k8s secret in this namespace. When i create AuthStatic with vault-secrets-operator/default auth reference in different namespace, i've got an error Failed to get secret because it try to get secret from namespace StaticAuth CR.

ownercoder avatar Oct 27 '23 15:10 ownercoder

CLA assistant check
All committers have signed the CLA.

hashicorp-cla avatar Oct 27 '23 15:10 hashicorp-cla

Hi @ownercoder, thanks for the patch here, but this is working as intended; credentials for auth should be coming from the VaultStaticSecret's namespace. We have some updated documentation about authentication in VSO up here now in case it's helpful: https://developer.hashicorp.com/vault/docs/platform/k8s/vso/sources/vault/auth

tvoran avatar Jul 30 '24 23:07 tvoran