You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Is working with env var only and we might want to use something like HashiCorp Vault instead of the Kubernetes Env var Secrets.
Proposed change
Implementing a trait LogObfuscator as replacement of the Secrets object that would be responsible to obfuscate log and would be expected as input to the creation of a Job.
We would provide a default thread safe implementation for Kubernetes Env var Secrets and people would be free to implement one for any other sensible data provider that should not be logged.
This was one found on the spot, please tell me if you have a better idea.
Thanks
The text was updated successfully, but these errors were encountered:
Motivation
The current Secret management utility object suffers from multiple flaws:
Proposed change
Implementing a trait
LogObfuscatoras replacement of theSecretsobject that would be responsible to obfuscate log and would be expected as input to the creation of aJob.We would provide a default thread safe implementation for Kubernetes Env var Secrets and people would be free to implement one for any other sensible data provider that should not be logged.
This was one found on the spot, please tell me if you have a better idea.
Thanks
The text was updated successfully, but these errors were encountered: