kiam icon indicating copy to clipboard operation
kiam copied to clipboard

Published 20 hours ago verified publisher icon uswitch

Pod IP cache Refresh causing incorrect iam role credentials

Open chaitushiva opened this issue 3 years ago • 1 comments

Problem Definition:

We have a pod 1 running with IP: 10.x.x.1 having an iam role "pod1-role".On successful termination of the pod 1 and before expiration of the respective credentials in the kiam server a new pod 2 with a diff role "pod2-role" is coming up with the pod 1 IP: 10.x.x.1 and providing pod1's credentials to the POD2.

Arguments we are passing to the kiam server are:

--session-duration=15m --sync=1m

Any suggestions to over come this scenario?

chaitushiva avatar Sep 05 '21 04:09 chaitushiva

@pingles , Any inputs?

chaitushiva avatar Sep 08 '21 14:09 chaitushiva