search

GoogleCloudPlatform / reliable-app-platforms

A MVP of a platform for delivering reliable applications on Google Cloud
Apache License 2.0
19 stars 6 forks source link

Reduce the number of service accounts autocreated for the cluster #71

Open MKand opened 4 months ago

MKand commented 4 months ago

Each cluster has a separate service account created by default. Might be an idea to create a single SA that is passed along to all the clusters

stevemcghee commented 4 months ago

i cautiously disagree. disabling a single global service account would take out multiple failure domains at once. that would be bad :)

stevemcghee commented 3 months ago

@muncus any opinion here?

stevemcghee commented 3 months ago

note: it looks like its coming from: https://github.com/GoogleCloudPlatform/reliable-app-platforms/blob/fb44920c44e08da8afd22b477e0e33fa7cf40045/infra/terraform/gke/gke.tf#L15