kustomize-controller
kustomize-controller copied to clipboard
SOPS AZKV getDefaultAzureCredential triggers API rate limit
When the Kustomize controller comes up, the getDefaultAzureCredential function will hammer the Azure API with login requests and get rate limited for a few minutes, resulting in failed Kustomize runs.
It would be preferable to cache the auth token and reuse it, rather than retrieve a new one on each SOPS decryption.
https://github.com/fluxcd/kustomize-controller/blob/main/internal/sops/azkv/keysource.go#L216