coderanger
commented
3 years ago No? I mean we need the token so if you disable automount then all that means is manually replacing the same lines which would be generated.
Closed ninghaocalgary closed 3 years ago
coderanger
commented
3 years ago No? I mean we need the token so if you disable automount then all that means is manually replacing the same lines which would be generated.
stale[bot]
commented
3 years ago This issue has been automatically marked as stale because it has not had recent activity. It will be closed in 7 days if no further activity occurs. Thank you for your contributions.
stale[bot]
commented
3 years ago This issue has been automatically closed due to inactivity.
tsivachi
commented
4 months ago Can this issue be re-opened to address the compliance issue that so that keda deployment does not require automountServiceToken=true? It seems to be that other OSS components like certmanager are able to implement a token rotation mechanism periodically and avoid mounting a static token as per this link here ?
should we look at Operator deployment mounted volume that use keda-operator service account, basically to comply with automountServiceAccountToken = false, currently if this line was added to service account, it breaks operator deployment.
Any thoughts? https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/