Uploaded image for project: 'OpenShift Storage'
  1. OpenShift Storage
  2. STOR-1303

Automatically restart `aws-efs-csi-driver-controller` pods when the secret `aws-efs-csi-driver-controller-metrics-serving-cert` is updated

XMLWordPrintable

    • Icon: Story Story
    • Resolution: Done
    • Icon: Undefined Undefined
    • openshift-4.14
    • None
    • None
    • False
    • None
    • False
    • OCPSTRAT-193 - Automatically restart storage operators pods when the CA certificates are updated

      The pod `aws-ebs-csi-driver-controller` mounts the secret:

      $ oc get po -n openshift-cluster-csi-drivers aws-efs-csi-driver-controller-79f956659f-7qk4d -o yaml
...
  containers:
    name: provisioner-kube-rbac-proxy

    volumeMounts:
    - mountPath: /etc/tls/private
      name: metrics-serving-cert

  volumes:
  - name: metrics-serving-cert
    secret:
      defaultMode: 420
      secretName: aws-efs-csi-driver-controller-metrics-serving-cert

      Hence, if the secret is updated (e.g. as a result of CA cert update), the Pod must be restarted
       

            rh-ee-mpatlaso Maxim Patlasov
            rh-ee-mpatlaso Maxim Patlasov
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: