Built on Mountpoint for Amazon S3, the Mountpoint CSI driver presents an Amazon S3 bucket as a storage volume accessible by containers in your Kubernetes cluster.
Apache License 2.0
213
stars
26
forks
source link
Ensure service account token files are unique per mount #236
We were using just Volume ID before for service account token files but since same volume can be mounted to multiple Pods, that would cause different Pods to use same tokens. With this PR we're using Pod ID + Volume ID to ensure uniqueness.
By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice.
We were using just Volume ID before for service account token files but since same volume can be mounted to multiple Pods, that would cause different Pods to use same tokens. With this PR we're using Pod ID + Volume ID to ensure uniqueness.
By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice.