-
Notifications
You must be signed in to change notification settings - Fork 115
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
option to predeploy any resource #906
Comments
All custom resources are already pre-deployed. Your full log output should show this. |
Yeah, looks like you're correct. I looked back on our CI/CD logs from October to confirm & back then ESO resources were not being predeployed, though curiously some other custom resources were. Logs from October:
Just did a fresh new test & ExternalSecrets are now being predeployed as they should:
Looks like krane version has been 2.4.7 in both cases. And external-secrets-operator has remained in the same version as well. I tracked down some more logs & found out that the change in behavior seems to match pretty much perfectly with our upgrade from EKS 1.21 to 1.22, so that's my main suspect right now. Anyway, I think this behavior in krane is working as expected 👍 |
I wonder if this could be related to #773 |
Feature request
Proposal: Could it be possible to predeploy any resouce, controlled by some annotation? Like
krane.shopify.io/predeployed
, which currently only supports CRDs.My personal use-case is deploying
kind: ExternalSecret
resources from https://github.com/external-secrets/external-secrets. Essentially it's an operator, which syncs secrets from external places like secret management solutions offered by AWS, Azure, GCP, whatever & creates correspondingkind: Secret
resources.The problem is that the
kind: ExternalSecret
doesn't always have enough time for initial sync as they're deployed at the same time askind: Deployment
for example, which can cause krane to result in failure like so:Of course as the secret is synced often just seconds after the deployment will recover automatically, but as we're running krane in CICD it'll still report the deployment as failed.
https://github.com/Shopify/krane#deploying-custom-resources would be another option, but unfortunately external-secrets-operator doesn't currently implement
observedGeneration
& thus I can't use this.The text was updated successfully, but these errors were encountered: