MiguelMartinho
MiguelMartinho
I am doing some tests using external-secrets and bumped into the same issue. I agree that the Store should be the place to have this location config (possibly it will...
Not using a service mesh solution (like istio, for example). It would be much simpler to set up TLS for the metrics endpoint of ESO.
Hi @rkferreira Partially yes. The reload of the certificate (similar logic as https://github.com/cert-manager/cert-manager/blob/master/pkg/server/tls/file_source.go) is missing.
Using K8s secrets created by cert-manager
Yes. VolumeMount. I could use Reloader, but it would be optimal not to have a pod restart. However, your PR already solves the main problem