Support GCP's Workload Identity for K8s

thelastpickle / cassandra-medusa

Apache Cassandra Backup and Restore Tool

Apache License 2.0

264 stars 142 forks source link

Support GCP's Workload Identity for K8s #558

Open hoangpham95 opened 1 year ago

hoangpham95 commented 1 year ago

Project board link

My project doesn't allow service account key creation due to security reason, and it's recommended that I use workload identity to configure access from my K8s cluster to other GCP resources. Is there a plan to support workload identity with Medusa for K8s?

┆Issue is synchronized with this Jira Story by Unito ┆Issue Number: MED-32

Miles-Garnsey commented 1 year ago

Hi @hoangpham95 , can you provide a bit more detail on how you'd like this to work? Do you want to use workload identity as a means to provide credentials for bucket access?

clearclaw commented 9 months ago

Yes, this would be for bucket access -- same as using an instance role in AWS. (We have the same problem/concern)