Open swade1987 opened 1 week ago
@swade1987 Hi, I picked up a closed PR in this repo and reintroduced it: https://github.com/sentry-kubernetes/charts/pull/1492. I think that should allow us to specify an existing secret :D
@swade1987 Hi, I picked up a closed PR in this repo and reintroduced it: https://github.com/sentry-kubernetes/charts/pull/1492. I think that should allow us to specify an existing secret :D
Love this, this will be a huge help as 85% of the customisations in our forked chart are for this. The others are for geoIP license and Istio support.
@swade1987 Hi, I picked up a closed PR in this repo and reintroduced it: #1492. I think that should allow us to specify an existing secret :D
Love this, this will be a huge help as 85% of the customisations in our forked chart are for this. The others are for geoIP license and Istio support.
It looks like this PR is merged! Feel free to test if it works - I tested it in my cluster and it seems to be fine (but there may be edge cases)
@swade1987 Hi, I picked up a closed PR in this repo and reintroduced it: #1492. I think that should allow us to specify an existing secret :D
Love this, this will be a huge help as 85% of the customisations in our forked chart are for this. The others are for geoIP license and Istio support.
It looks like this PR is merged! Feel free to test if it works - I tested it in my cluster and it seems to be fine (but there may be edge cases)
Will do, will most likely be next week as we are currently working on getting 25.9.0 rolled out as the client currently have 18.0.0 installed.
Current Situation
The current Helm chart doesn't provide a secure way to configure Redis with a password, unlike the PostgreSQL credentials which can be passed securely.
Problem
Current Workaround
To mitigate this, I've implemented a workaround in my fork of the chart:
initContainer
to substitute environment variables:volumeMounts
configuration in the main container:Issues with Current Workaround
Proposed Solution
Implement a solution similar to how PostgreSQL credentials are handled. This could involve:
redis.existingSecret
value in the chart, allowing users to specify an existing Secret containing the Redis password.Benefits of Proposed Solution
Questions