[TRACK] multi KMS encryption provider support within Kubernetes API server #146

romdalf · 2022-07-25T20:24:26Z

Is it linked to a user story? (use the "#" to tag the user story)

What do we want to build?

Kubernetes API secret annotation capabilities to target one or multiple providers.

Why do we want to build it?

Trousseau v2 will multi kms support but the actual Kubernetes KMS encryption providers is not supporting the logic of targeting a specific provider entry from EncryptionConfiguration.

How do we want to design it?

See kubernetes/kubernetes#111405

The text was updated successfully, but these errors were encountered:

romdalf · 2022-07-25T20:26:25Z

note: the issue has been shared on the relevant sig Kubernetes slack channel with a first ack and discussion about this proposal.

romdalf added enhancement New feature or request dependencies Pull requests that update a dependency file labels Jul 25, 2022

romdalf added this to the Cloud provider KMS providers milestone Jul 25, 2022

romdalf self-assigned this Jul 25, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[TRACK] multi KMS encryption provider support within Kubernetes API server #146

[TRACK] multi KMS encryption provider support within Kubernetes API server #146

romdalf commented Jul 25, 2022

romdalf commented Jul 25, 2022

[TRACK] multi KMS encryption provider support within Kubernetes API server #146

[TRACK] multi KMS encryption provider support within Kubernetes API server #146

Comments

romdalf commented Jul 25, 2022

Is it linked to a user story? (use the "#" to tag the user story)

What do we want to build?

Why do we want to build it?

How do we want to design it?

romdalf commented Jul 25, 2022