Joao C Costa

icon indicating a website link www.kit-ar.com

icon company KIT-AR Ltd

Results 183 comments of Joao C Costa

Support AppendBlobs and AppendBlock operation

Thx. Didn't knew about that. We will try it, but the fact that it doesn't work on HTTPS is not good for us at the time being (Hololens/UPW on a...

Launch template block_device_mapping not working

I had a similar issue, and this does indeed solve the issue. Maybe it's worth changing the defaults processing code here (https://github.com/terraform-aws-modules/terraform-aws-eks/blob/666603b6e531140d5d8fbd777cd90a7fbb8247dd/modules/eks-managed-node-group/main.tf#L43) to not accept null by default, as it...

error when synching StorageClass (vcluster->host) after vcluster restart

Not sure I understand the answer. Shouldn't the storage class sync work without causing these issues, which make the system unreliable (as in any restart of controller pods will cause...

error when synching StorageClass (vcluster->host) after vcluster restart

Hi. Thanks for the update. Let me try to explain why I was thinking this should not be necessary. * Storage classes are indeed write-once. * Re-running `kubectl apply -f...

AWS EKS using external-secrets from within vcluster not able to authenticate to AWS via OIDC.

@willjw1, did you manage to solve this? I just noticed this after answering on another ticket https://github.com/loft-sh/vcluster/issues/1310#issuecomment-1800185219. Thanks

AWS EKS using external-secrets from within vcluster not able to authenticate to AWS via OIDC.

IRSA inside vcluster seems to work as intended (we tried with other softwaare), but in the case of external-secrets, it doesn't seem to work. We also gave up (details [here](https://github.com/loft-sh/vcluster/issues/1310#issuecomment-1800185219)),...

Service account token request from synced service account does not work with AWS IRSA

@giepa did you manage to get an answer to this? we have exactly the same need. It would be wonderful if we could do it via IRSA. If that is...

Service account token request from synced service account does not work with AWS IRSA

Thanks. As a quick clarification, I didn't meant it was not secure, but simply less secure as IRSA, as we have secrets being stored there (and, FWIW, In our context,...

Service account token request from synced service account does not work with AWS IRSA

Update from recent testing: When we create the following manifest inside the vcluster, we get no errors and we get `store validated` ``` apiVersion: external-secrets.io/v1beta1 kind: ClusterSecretStore metadata: name: aws-ssm-ps--0...

Service account token request from synced service account does not work with AWS IRSA

After some more digging, I found this info on external-secrets docs (https://external-secrets.io/latest/provider/aws-secrets-manager/#eks-service-account-credentials), where `serviceAccountRef` must also include `namespace` even on `ClusterSecretStores` so that secrets can be created in any namespace....