Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Document installation and use #15

Open
tam7t opened this issue Jun 10, 2020 · 2 comments
Open

Document installation and use #15

tam7t opened this issue Jun 10, 2020 · 2 comments
Labels
documentation Improvements or additions to documentation

Comments

@tam7t
Copy link
Contributor

tam7t commented Jun 10, 2020

TL;DR

Include documentation for:

  • requirements for installing the driver + plugin
  • process for installing the driver + plugin
  • how to mount secrets into pods and the SecretProviderClass CRD
  • the necessary IAM permissions

Design

Proposal

Alternatives considered

Resources

Additional information
@tam7t
Copy link
Contributor Author

tam7t commented Jun 10, 2020

The documentation should also call out the risks of accessing secrets through the filesystem (path traversal vulnerabilities escalating into more serious impacts) compared to using the API directly.

(related issue: kubernetes/kubernetes#86186)

@tam7t tam7t added the documentation Improvements or additions to documentation label Jun 26, 2020
@tam7t
Copy link
Contributor Author

tam7t commented Sep 17, 2020

#42 addressed the security considerations.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
documentation Improvements or additions to documentation
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@tam7t