When creating a PVC using the SMB/CIFS storageclass there is no way to create an encrypted share. The shares are created as un-encrypted. To satisfy ISO requirements data at reset needs to be encrypted.
After the un-encrypted share is created I can manually encrypt the shared folder. However, when the volume is deleted, synology-csi controller is not able to automatically delete the share. If I leave the share as unencrypted then synology-csi can correctly delete the share when the volume is deleted.
Is it possible to either:
1) Allow users to specify an encryption key in the storageclass to create encrypted shared folders; or
2) Allow the user to manually encrypt share folders but still allow synology-csi to delete the shares when the volume is deleted in K8s
When creating a PVC using the SMB/CIFS storageclass there is no way to create an encrypted share. The shares are created as un-encrypted. To satisfy ISO requirements data at reset needs to be encrypted. After the un-encrypted share is created I can manually encrypt the shared folder. However, when the volume is deleted, synology-csi controller is not able to automatically delete the share. If I leave the share as unencrypted then synology-csi can correctly delete the share when the volume is deleted.
Is it possible to either: 1) Allow users to specify an encryption key in the storageclass to create encrypted shared folders; or 2) Allow the user to manually encrypt share folders but still allow synology-csi to delete the shares when the volume is deleted in K8s