Omer Levi Hevroni
Omer Levi Hevroni
- [ ] Applicative audit logs from the API - [ ] [KeyVault Audit logs](https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Fazure-monitor%2Finsights%2Fazure-key-vault&data=02%7C01%7CAndrei.Razvan%40microsoft.com%7C2cd1628f7fc74daaeeaf08d67acad01b%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C636831408848541315&sdata=msraDxq%2BJAKno3cnyCdDApBTvF%2BLe62ULghfk2Q1duU%3D&reserved=0)
Today, the encryptor and decryptor are using the same credentials for authentication with the KMS. This is not ideal, we should follow the least privileged role here - grant them...
Currently, there is no code coverage report. This means that it is not clear to users how quality Kamus is, and whether or not they can trust it. Need to...
Allow to connect to encryptor pod without ingress - view pod forward (similar to how Helm interact with tiller)
All the logic should be moved into the CLI, and the container should use it directly.
See the labels [here](http://label-schema.org/rc1/#label-semantics)
The current isAlive does not check the dependencies of the API. The isAlive need to check: - KMS provider health - Kubernetes API access - that the decryptor can call...
The current KMS provider is not visible for monitoring currently, which could cause a production issue, if someone will change it by accident. IMO we need to add a metrics...
**Is your feature request related to a problem? Please describe.** Storing sensitive configuration in an environment variables is not considered as best practices. **Describe the solution you'd like** Allow reading...
Some of the commands (for example, `!CreateRepo`, `!SetRepoPermissions`) require team parameters. It could help people to be able to list all teams or search for a team to find the...