Provide a shipperctl command to refresh webhook secret

bookingcom / shipper

Kubernetes native multi-cluster canary or blue-green rollouts using Helm

Apache License 2.0

734 stars 38 forks source link

Provide a shipperctl command to refresh webhook secret #337

Open parhamdoustdar opened 4 years ago

parhamdoustdar commented 4 years ago

Right now, there is no way of refreshing the secret for the webhook without downtime. This command would generate a new secret and replace it with the current secret. This allows operators to refresh a secret before it expires.

parhamdoustdar commented 4 years ago

Another way to do this could be to add a controller to Shipper that actively watches and refreshes the webhook secret before it expires. This is something for us to look into.