Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix: adding an environment value to enable the ignoring of the name, accessKey and secretKey in configSecret. #2352

Closed
wants to merge 1 commit into from
Closed

fix: adding an environment value to enable the ignoring of the name, accessKey and secretKey in configSecret. #2352

wants to merge 1 commit into from

Conversation

drew-viles
Copy link

@drew-viles drew-viles commented Oct 30, 2024
edited
Loading

Description

In version 6.0.4 the inclusion of this check broke the ability to pass the existingSecret value because the default values provided in the values.yaml file caused the error to trigger. It seems incorrect to have to provide the following to make it work:

  configSecret:
    name: ""
    accessKey: ""
    secretKey: ""
    existingSecret: true

Now we can presume that in dev the values will be provided in line as per the values file and in any other situation, they are provided via an existing secret.

There may be a better way than this, but I've rolled this out and it's fixed the problem I had when upgrading to 6.0.4.

Type of Change

  • Bug fix 🐛
  • New feature 🚀
  • Breaking change 🚨
  • Documentation update 📖
  • Refactor 🔨
  • Other (please describe) ⬇️

Screenshots (if applicable e.g before/after)

Checklist

  • I have tested these changes
  • I have updated relevant documentation (if applicable)
  • I have added necessary unit tests (if applicable)

Test Steps

  1. Roll out Minio chart with the existing secret as described above. Watch it fail.
  2. Roll it out with this change with or without .Values.tenant.environment set as per the conditional, watch it succeed.

Additional Notes / Context

@drew-viles drew-viles force-pushed the fix-existing-secret branch 2 times, most recently from 980f203 to 3207fab Compare December 22, 2024 12:36
@drew-viles drew-viles mentioned this pull request Mar 28, 2025
Merged
@drew-viles
Copy link
Author

Would you be able to take a look at this please @ramondeklein?

I'm seeing a few people hit by this and whilst we can explicitly blank out accessKey and secretKey in the chart, this feels like an anti-pattern in that it's opt out instead of opt in.

@drew-viles
fix: adding an environment value to enable the ignoring of the name, …
fa7ec2e 
…accessKey and secretKey in configSecret.

In version 6.0.4 the inclusion of [this check](https://github.com/minio/operator/pull/2299/files#diff-1320c71ce4251e5e50c3b17c8aee11659e44a7208d1ab8d5c4f68694c02d9e80R20-R25) broke the ability to pass an existing secret because the default values provided in the values.yaml file, caused the error to trigger. Now we can presume in dev that the values will be provided in line and in any other env, they are provided via an existing secret.
@drew-viles drew-viles force-pushed the fix-existing-secret branch from b19ca66 to fa7ec2e Compare March 28, 2025 13:19
@ramondeklein
Copy link
Contributor

I rather not introduce more variables. I have submitted #2412. Could you check if that would fix your issues?

@drew-viles
Copy link
Author

That's reasonable, let me check the other one you've linked to see if it resolves it

@drew-viles drew-viles mentioned this pull request Mar 28, 2025
Open
9 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@drew-viles @ramondeklein