Marko Mikulicic
Marko Mikulicic
By using the `namespace-wide` scope when sealing the secret, the secret can be renamed at will as long as it stays in the same namespace
@tehmoon hi! Thanks. Can you please describe your wider workflow so I can better understand how this step with kustomize fits in?
we can start by reaching out to the upstream project and ask if they're open to contributions to get back windows support.
Ah, basically they're saying that's it's impossible on windows. So let's just not use that library on windows
(by which I mean we should write our own wrapper that uses that library on all platforms except windows, where it just writes to the file non-atomically)
We'd have to add support for this "namespace whitelist". It shouldn't be hard. Contributions welcome!
Makes sense!
What if we use the `{"apiVersion": "v1", "kind": "List", "items": [...]}` to render to and from json?
FTR, per-item encryption has been implemented in [v0.7.0](https://github.com/bitnami-labs/sealed-secrets/releases/tag/v0.7.0)
> Unfortunately currently encrypting side has to know into which namespace it will be deployed as namespace is part of encryption algorithm. This is by design in order to allow...