Skip to content

Operator does not take into account secret values when checking configuration changes #10926

Open
@nicolaferraro

Description

@nicolaferraro

Version & Environment

The operator always tries to reconcile some configuration properties if they are secret. One example is cloud_storage_secret_key, which is always reconciled because drifts are detected.

The reason seems to be that the admin API now does not reply with the value of the property, it replies with '[secret]', so whatever data is enforced by the operator, it is considered different from the actual value upon drift detection.

Redpanda version: (use rpk version): v23.1.10.

How to reproduce the issue?

  1. Fill the operator fields for cloud storage, including a secret key
  2. Wait ~10 minutes
  3. Cluster resource is marked as drifted (status->conditions) and configuration is reconciled again

JIRA Link: CORE-1311

Metadata

Metadata

Labels

P3Default Priority - Sometime in the next yeararea/k8sblockedkind/bugSomething isn't working

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions