Loading...

XML

Word

Printable

Type: Story
Resolution: Done
Priority: Normal
Fix Version/s: rhos-18.0 FR 1 (Nov 2024)
Affects Version/s: None
Component/s: None
Labels:
None

Story Points:
2
Epic Link:
Keystone fernet key rotation
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Ready:
False
Intelligence Requested:
Market:

Sprint:
DFG Security: UC Sprint 100, DFG Security: UC Sprint 101
sprint_count:
2

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

The run command should:

Copy the mounted secret files into a temporary location
Run keystone-manage to rotate the secret
Save the new values into the fernet token secret
Each step should be logged

Alternatively, the keystone-manage command could be replaced, so that we don't depend on keystone, which would enable us to just use a standard kubectl image.

depends on

OSPRH-9289 Fernet key rotation - create and publish new image

Closed

is depended on by

OSPRH-9309 Fernet key rotation - operator implementation

Closed

Assignee:: Grzegorz Grasza

Reporter:: Grzegorz Grasza

Team:: rhos-dfg-security

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 2024/08/08 7:58 AM

Updated:: 2024/09/05 8:03 AM

Resolved:: 2024/09/05 8:03 AM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates

PagerDuty