postgres-operator icon indicating copy to clipboard operation
postgres-operator copied to clipboard

Published 20 hours ago verified publisher icon zalando

secretNamespace type

Open apena-pmy opened this issue 3 years ago • 2 comments

  • Which image of the operator are you using?
    • registry.opensource.zalan.do/acid/postgres-operator:v1.8.1
  • **Where do you run it ?
    • Bare Metal K8s]
  • Are you running Postgres Operator in production?
    • No
  • Type of issue?
    • feature request

We deployed a PostgreSQL database in namespace A and we need the _owner _writer and _reader secrets in more than one another namespace. Is it posible to change the secretNamespace type from string to array ??

apena-pmy avatar Jun 06 '22 14:06 apena-pmy

If we would allow the same secrets to be stored in multiple namespaces we would need to re-work the whole syncing process of secrets (incl. rotation of credentials inside secrets). I think neither is this something we want now is it good practice in K8s in general. Why can't all your apps (living in different namespaces, I guess) refer the to same secret namespace?

FxKu avatar Jun 14 '22 15:06 FxKu

Thanks @FxKu for your reply. Yes, we have our apss in different namespaces and need them to access the PostgreSQL databases. I'm not sure what you mean with "refere the to same secret namespace" as secrets could not be access from another namespace in k8s.

apena-pmy avatar Jun 14 '22 18:06 apena-pmy