Currently all secret data is inserted directly in each CR. That's a security risk. We need to want the ability to load secrets from env or k8s secret objects
How can we solve it?
We have a struct named SecretSource. We should have each Source implement a method like RetrieveSecrets which returns a list of SecretSources present in that source.
The source manager can load the secret value from the secretSource and store the value within this struct itself.
will need to add a new field called value in this struct.
the sources can be rest assured that they will always fine the secret value in the struct when they are getting provisioned
If you want this feature to be implemented, give it a thumbs up reaction, so that we can determine which features are important to you.
👍
The problem faced currently?
Currently all secret data is inserted directly in each CR. That's a security risk. We need to want the ability to load secrets from env or k8s secret objects
How can we solve it?
SecretSource. We should have eachSourceimplement a method likeRetrieveSecretswhich returns a list ofSecretSourcespresent in that source.valuein this struct.