We currently require service keys be duplicated for each hub, even though they may be on the same cluster. This provides more room for error and leaks.
Instead, we should have a centralized dir that contains all credentials based on cluster / project names that can be re-used. We should also rotate these periodically, so having them in one place makes that much easier.
We currently require service keys be duplicated for each hub, even though they may be on the same cluster. This provides more room for error and leaks.
Instead, we should have a centralized dir that contains all credentials based on cluster / project names that can be re-used. We should also rotate these periodically, so having them in one place makes that much easier.