Describe the request
As Azure KeyVault is pushing ECR (emergency certificate rotation) https://aka.ms/ecr, it requires services to periodically fetch the latest KeyVault secrets/certs and update accordingly. For AKS microservices, it would be GREAT to have FlexVolume supporting reload KeyVault periodically.
Explain why Key Vault FlexVolume needs it
Support of refreshing expired/revoked certificates.
Describe the solution you'd like
An config of "refresh rate X" which reloads AKV every X mins.
Describe alternatives you've considered
Other ideas of supporting periodically reload secrets/certs
Describe the request As Azure KeyVault is pushing ECR (emergency certificate rotation) https://aka.ms/ecr, it requires services to periodically fetch the latest KeyVault secrets/certs and update accordingly. For AKS microservices, it would be GREAT to have FlexVolume supporting reload KeyVault periodically.
Explain why Key Vault FlexVolume needs it Support of refreshing expired/revoked certificates.
Describe the solution you'd like An config of "refresh rate X" which reloads AKV every X mins.
Describe alternatives you've considered Other ideas of supporting periodically reload secrets/certs
Additional context