Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Allow superuserSecretName to be updated #350

Open
jsanda opened this issue Jun 16, 2022 · 0 comments
Open

Allow superuserSecretName to be updated #350

jsanda opened this issue Jun 16, 2022 · 0 comments
Labels
assess Issues in the state 'assess' enhancement New feature or request zh:Assess/Investigate

Comments

@jsanda
Copy link
Contributor

jsanda commented Jun 16, 2022
edited by sync-by-unito bot
Loading

What is missing?
The validating webhook does not allow the superuserSecretName to be updated.

Why do we need it?
In k8ssandra/k8ssandra-operator#566 a user reported a problem not being able to change the superuser secret reference. While investigating the issue I noticed that the validating webhook in cass-operator does not allow the secret reference to be updated.

This is necessary to support revocation and rotation policies.

This may get into some Cassandra user/role management which the operator doesn't really do, so I think we should carefully consider how to address this.

Environment

  • Cass Operator version:

    v1.11.0

    **Anything else we need to know?**:

┆Issue is synchronized with this Jira Story by Unito
┆Issue Number: CASS-37
@jsanda jsanda added the enhancement New feature or request label Jun 16, 2022
@sync-by-unito sync-by-unito bot changed the title Allow superuserSecretName to be updated K8SSAND-1577 ⁃ Allow superuserSecretName to be updated Jun 16, 2022
@jsanda jsanda mentioned this issue Jun 17, 2022
Open
@adejanovski adejanovski moved this to Assess/Investigate in K8ssandra Nov 8, 2022
@adejanovski adejanovski added the assess Issues in the state 'assess' label Sep 3, 2024
@sync-by-unito sync-by-unito bot changed the title K8SSAND-1577 ⁃ Allow superuserSecretName to be updated Allow superuserSecretName to be updated Oct 11, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
assess Issues in the state 'assess' enhancement New feature or request zh:Assess/Investigate
Projects
No open projects
K8ssandra
Status: Assess/Investigate
Milestone
No milestone
Development

No branches or pull requests
2 participants
@jsanda @adejanovski