This PR adds a new environment variable which controls whether the operator should create ServiceAccount token secrets for the ServiceAccounts created for each cluster and tenant. If the flag is enabled, we create a ServiceAccount token secret for the ServiceAccounts created for each Cluster and Tenant. We set controller references on the created secrets so that a cluster or tenant reconcile is triggered when a token secret is deleted.
[x] Keep pull requests small so they can be easily reviewed.
[x] Update the documentation.
[x] Categorize the PR by setting a good title and adding one of the labels:
bug, enhancement, documentation, change, breaking, dependency
as they show up in the changelog
This PR adds a new environment variable which controls whether the operator should create ServiceAccount token secrets for the ServiceAccounts created for each cluster and tenant. If the flag is enabled, we create a ServiceAccount token secret for the ServiceAccounts created for each Cluster and Tenant. We set controller references on the created secrets so that a cluster or tenant reconcile is triggered when a token secret is deleted.
The secrets are created as documented in https://kubernetes.io/docs/reference/access-authn-authz/service-accounts-admin/#to-create-additional-api-tokens
Closes #229
Checklist
bug
,enhancement
,documentation
,change
,breaking
,dependency
as they show up in the changelog