Comments (7)
TheYkk
commented on June 18, 2024
Thanks for using synator,
How can I reproduce this situation?
Did synator delete copied secrets? because you said synator wasn't created secrets.
from synator.
Philippians413
commented on June 18, 2024
It's very specific case, I'm not sure that it's possible to reproduce.
I just want to clarify some points:
- is it possible that during upgrade_secret synator can delete secret? If yes, could you please add it in logs, because it's not obvious;
- is it possible for synator: if we delete secret in source namespace to keep secrets in namespaces that specified on include-namespaces block?
Did synator delete copied secrets?
Yes
from synator.
Philippians413
commented on June 18, 2024
Hey @TheYkk
We found that problem was not on synator side, but for our case it would be good to add this functionality:
if we delete secret in source namespace to keep secrets in namespaces that specified on include-namespaces block?
For example, we create secret in development namespace and add annotation for it
synator/include-namespaces: foo, bar, xyz
but if we delete this secret in development namespace, keep it in foo, bar, xyz namespaces.
Is it possible? We would be grateful from our side
Regards,
Bohdan
from synator.
TheYkk
commented on June 18, 2024
I think it's possible to do that. In the update part, we can ignore deletion requests.
from synator.
fenfir
commented on June 18, 2024
I ran into a similar issue with sealed secrets. I think the owner reference block on secrets created by sealed secrets is preventing them from being created in other namespaces.
ownerReferences:
- apiVersion: bitnami.com/v1alpha1
controller: true
kind: SealedSecret
name: star-example-com-cert
uid: 3c5845af-018f-4577-bbdd-023f0e7cbe9f
resourceVersion: "199651653"
uid: 57a4d0c7-7bbe-436c-a67a-67a5a1077de6
from synator.
zackb
commented on June 18, 2024
@fenfir did you ever come up with a solution to this? I think the same thing is happening with Secrets created with SopsSecrets
from synator.
slax81
commented on June 18, 2024
@fenfir @zackb
You can check my fork until the pull request here is accepted. It removes ownerRef from metadata and secrets are not deleted by the Kubernetes garbage collector.
from synator.
Related Issues (7)
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from synator.