Maurice Faber

I don't think we need to fix this because it is not worth it. (Too much work to split up the domains with multiple paths on same domain.) Do you...

This is actually intended to support SSO for deployments outside of otomi

Ah yes, I was thinking about another use case. It was a while ago

why would this this problematic?

Would be great to see that implemented. But it involves more than you think. Secrets need to be created in Vault somehow, and External Secrets only pulls secrets, so we...

"Automatically"? There is always work involved. K8s is a beast which eats declarations. Which actor creates those declarations do you think? Console is the one stop solution for most things,...

So, to continue on my obervation, for your approach we would have to create and maintain multiple api interfaces for the different endpoints we support: Vault, Azure Keyvault, AWS etc...

I just don’t see a man in the middle approach where otomi console is the creator of secrets in multiple exotic storage endpoints. I do understand the friction of needing...

If this gets prio we should have a discussion about the details. I have a detailed vision already that I would like to share.

Thanks for the elaborate write down @merll. I want to add that we have talked about this extensively with @srodenhuis and @j-zimnowoda and we concluded the following general vision: -...