Closed ahmetb closed 4 years ago
This is working as intended. We have two sometimes conflicting goals:
We tell users how to generate the secret because it's a best practice to create secrets locally, but we use a checked-in version through skaffold because we don't have real sensitive data, and we want it to be easy to deploy.
I like this idea though, because it would meet both goals in a cleaner way: https://github.com/GoogleCloudPlatform/bank-of-anthos/issues/115
due to the last line, skaffold iterations (run + delete) are overwriting and deleting the secret generated via
in the README.md. I think checking in the secret isn't such a bad idea and since it doesn't provide actual security to this project, it helps people get thinks get up and running much easier.