search

oracle / oracle-database-operator

The Oracle Database Operator for Kubernetes (a.k.a. OraOperator) helps developers, DBAs, DevOps and GitOps teams reduce the time and complexity of deploying and managing Oracle Databases. It eliminates the dependency on a human operator or administrator for the majority of database operations.
Universal Permissive License v1.0
141 stars 45 forks source link

Add support for OKE Workload Identity #89

Closed hyder closed 4 months ago

hyder commented 8 months ago

OKE has a feature called OKE Workload Identity. This makes it considerably easier and more secure to configure pods to authenticate and access OCI services e.g. https://medium.com/oracledevs/kubernetes-monitoring-with-verrazzano-prometheus-thanos-and-workload-identity-on-oracle-cloud-ff35fafb547a.

For the ora-operator, it would be most helpful if OKE Workload Identity can be added so that the ora-operator can provision new databases or bind to existing ones and create the wallets without the need to set up the OCI private key nor instance principal.

hyder commented 4 months ago

Resolved in #98.

In future, please ensure community contributions (https://github.com/oracle/oracle-database-operator/pull/91) are reviewed and merged.