secret-manager icon indicating copy to clipboard operation
secret-manager copied to clipboard

Published 20 hours ago verified publisher icon itscontained

Add support for secret renewal

Open mcavoyk opened this issue 4 years ago • 2 comments

Add field to ExternalSecret to control refresh period rather than relying on occasional controller resyncs.

Current design is to add the field refreshInterval of type time.Duration.

mcavoyk avatar Aug 24 '20 00:08 mcavoyk

Hi @mcavoyk , is the current controller still does not support reconciling the secrets if updated in the backend ? any workarounds for that other than recreating the externalSecret resource ?

ahmedmus-1A avatar Oct 26 '20 15:10 ahmedmus-1A

Hi @mcavoyk , is the current controller still does not support reconciling the secrets if updated in the backend ? any workarounds for that other than recreating the externalSecret resource ?

This field is not currently supported, but all ExternalSecrets will be refreshed every controller resync period (~10 hours). If more immediate refresh is needed, right now the way to do that would be edit an annotation the ES which will cause the secret-manager to reconcile the secret and refresh the contents.

mcavoyk avatar Oct 26 '20 19:10 mcavoyk