Open shuknk8s opened 2 months ago
This defect has been proven genuine and has been accepted, why do we need to use deprecated writeconnectionsecrettoref and publishconnectiondetailsto to publish connection secret details to vault , it appears that the feature has been rolled out without proper testing.
Is there an existing issue for this?
Affected Resource(s)
rds.aws.upbound.io/v1beta2 in conjunction with ESS Vault
Resource MRs required to reproduce the bug
Hasan has both versions of composition with and without writesecretto namespace
Steps to Reproduce
What happened?
Per ESS Vault document, the conenctiondetails of MR should get published directly to vault but in reality it does not without first writing the connection details to k8s cluster especially when the connection details include auto generated db master password.
Relevant Error Output Snippet
Crossplane Version
1.15.2
Provider Version
latest upbound aws provider
Kubernetes Version
Client Version: v1.28.5 Kustomize Version: v5.0.4-0.20230601165947-6ce0bf390ce3 Server Version: v1.28.8+k3s1
Kubernetes Distribution
k3s and openshift
Additional Info
https://crossplane.slack.com/archives/CEFQCGW1H/p1714675654509779?thread_ts=1714061533.429319&cid=CEFQCGW1H