search

IBM / signoff-pxb

Repos for pxb related release sign-off
Apache License 2.0
0 stars 0 forks source link

Issues in px-backup resources #6

Open ambiknai opened 10 months ago

ambiknai commented 10 months ago 
kubectl get secrets
NAME                                                  TYPE                             DATA   AGE
all-icr-io                                            kubernetes.io/dockerconfigjson   1      69m
amb-px-backup-1a3eab5711ccbbb89961bba6a37cd948-0000   kubernetes.io/tls                2      62m
backup-d50cfd1-1638f9f-default                        Opaque                           8      10m
location2-bc220da                                     Opaque                           9      3m41s
ambikanair@Ambikas-MBP demo % kubectl get secret -o yaml location2-bc220da 
kubectl get secret -o yaml location2-bc220da 
apiVersion: v1
data:
  accessKeyID: xxx=
  disableSSL: ZmFsc2U=
  encryptionKey: ""
  endpoint: czMudXMuY2xvdWQtb2JqZWN0LXN0b3JhZ2UuYXBwZG9tYWluLmNsb3Vk
  password: azBwMUAjR0I=
  path: dGVzdGJhY2s=
  region: dXMtZ2Vv
  secretAccessKey: xxx
  type: czM=
kind: Secret
metadata:
  annotations:
    stork.libopenstorage.org/skip-resource: "true"
  creationTimestamp: "2023-08-16T10:03:02Z"
  name: location2-bc220da
  namespace: default
  resourceVersion: "7542"
  uid: 3d507724-771d-40f6-a8cf-eed39d32f5fe
type: Opaque
Screenshot 2023-08-16 at 4 08 06 PM 
 kubectl get secrets
NAME                                                  TYPE                             DATA   AGE
all-icr-io                                            kubernetes.io/dockerconfigjson   1      82m
amb-px-backup-1a3eab5711ccbbb89961bba6a37cd948-0000   kubernetes.io/tls                2      75m
backup-d50cfd1-1638f9f-default                        Opaque                           8      23m
trenukarya-px commented 10 months ago

This is internally known and discussed before as well. As of now, there was no pressing need for using vault to store the secrets and hence was not taken up. Please provide more justification if there is requirement from customer and Px can consider it based on PM priorities.

arahamad commented 10 months ago

@trenukarya-px , This is regarding making our platform secure for user this is very much ask by every financial customer, this may be not reported by user because px-backup is not used much but going forward it will be and that time it will be very critical requirement, can you please plan accordingly

ambiknai commented 9 months ago

Case ID: CS0394019