etcd-operator icon indicating copy to clipboard operation
etcd-operator copied to clipboard
verified publisher icon aenix-io

Provide a flag to enable etcd auth

Open kvaps opened this issue 1 year ago • 0 comments

Kamaji project uses muti-tenant etcd so it reuqires to make the setup more secured. I think we can provide the following flag:

security:
  enableAuth: true

which should do:

if etcdctl user get root &>/dev/null; then
  echo "User already exists, nothing to do"
else
  etcdctl user add --no-password=true root &&
  etcdctl role add root &&
  etcdctl user grant-role root root &&
  etcdctl auth enable
fi

And in case of false:

etcdctl auth disable

kvaps avatar Apr 11 '24 15:04 kvaps