lets make a kubernetes cronjob too

[rawlingsj]

Currently this runs as a kubernetes controller which is great because when a new secret is added the controller reacts and grabs the secret data from Google's Secret Manager (GSM). One problem with this is if a new secret version is created in GSM the controller doesnt update the k8s secret value because it's watching the k8s resources not GSM.

As an alternative to running the controller all the time and using resources when not needed we could run this as a k8s CronJob so that periodically it queries GSM and updates the k8s secrets. Any pod that has the secret mounted automatically gets the new data without needing to restart.

This seems like a good option to offer.

[jenkins-x-bot]

Issues go stale after 90d of inactivity. Mark the issue as fresh with /remove-lifecycle stale. Stale issues rot after an additional 30d of inactivity and eventually close. If this issue is safe to close now please do so with /close. Provide feedback via https://jenkins-x.io/community. /lifecycle stale

[jenkins-x-bot]

Issues go stale after 90d of inactivity. Mark the issue as fresh with /remove-lifecycle stale. Stale issues rot after an additional 30d of inactivity and eventually close. If this issue is safe to close now please do so with /close. Provide feedback via https://jenkins-x.io/community. /lifecycle stale