Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Non-Admin BSL credential design #57

Open
weshayutin opened this issue May 2, 2024 · 0 comments
Open

Non-Admin BSL credential design #57

weshayutin opened this issue May 2, 2024 · 0 comments
Labels
priority-high

Comments

@weshayutin
Copy link
Contributor

weshayutin commented May 2, 2024
edited
Loading

  • Non-Admin users are will be able to create BSL's
  • Ideally the DPA is not changed when a non-admin BSL is created

As discussed in scrum on 5/2

  • A non-admin bsl will be reconciled by the non-admin controller
  • The secret used from the non-admin bsl will be copied into a single credential in the oadp namespace
  • An empty secret in oadp namespace will be created when non-admin is enabled and mounted to the velero container
    • Perhaps a side car can be used and restarted in lieu of the velero pod
  • non-admin creds will need to be namespaced in the cred key.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
priority-high
Projects
OADP
Status: New / Design
Milestone
No milestone
Development

No branches or pull requests
2 participants
@weshayutin @shubham-pampattiwar