HametAk
commented
2 years ago up
Open pankaj-dahiya-devops opened 2 years ago
HametAk
commented
2 years ago up
raven-wing
commented
1 year ago While the topic remains stale, I'll post some not-so-good workarounds for those who will get there:
raven-wing
commented
1 year ago Hmm... and also... from values.yaml:
# This can be used to automate processes such as initialization
# or boostrapping auth methods.
postStart: []
# - /bin/sh
# - -c
# - /vault/userconfig/myscript/run.sh ```
Is your feature request related to a problem? Please describe. A clear and concise description of what the problem is. Ex. I'm always frustrated when [...]
In production, you will never do any manual steps, not even a single one, then why do we always have to do an operator init. If we want an auto-unseal with KMS then there MUST be an option in helm charts to automatically init the vault, save the keys into KMS and unseal itself on day-zero.
Describe the solution you'd like A clear and concise description of what you want to happen.
The only solution is - Provide a helm value that says- automaticallyInit=true with KMS details.
Describe alternatives you've considered A clear and concise description of any alternative solutions or features you've considered.
No alternative, software should be simple to use.
Additional context Add any other context or screenshots about the feature request here.
Only context - whenever we need to provide delivery to any client, they need a single helm chart which consists of all the application charts and dependencies. They want to do only "HELM INSTALL" and nothing else. With this helm install, they want to install all the required applications with their dependencies.