starred/acme-dns
1
0
Fork 0
mirror of https://github.com/acme-dns/acme-dns.git synced 2026-04-27 12:55:48 +03:00
Code Issues 178 Projects Releases 5 Packages Wiki Activity

[GH-ISSUE #277] Add support for reading Kubernetes secrets for stateless deployment #141

New issue
Open
opened 2026-03-13 15:55:31 +03:00 by kerem · 0 comments
kerem commented 2026-03-13 15:55:31 +03:00
Owner
Copy link

Originally created by @Exagone313 on GitHub (Sep 13, 2021).
Original GitHub issue: https://github.com/acme-dns/acme-dns/issues/277

Hi,

I've created the project acme-dns-sidecar that reads Kubernetes secrets and write values into the sqlite database. I succeeded to create a "stateless" acme-dns deployment where I don't use any volume, but I can still add or remove users at will without redeploying acme-dns.

I'm willing to port the feature to acme-dns directly, but I wish to discuss the implementation.

The first issue is that it would add a new dependency, that needs to be maintained as Kubernetes is updated (this also means that not all versions of Kubernetes will be supported, as the API changes, for the Kubernetes mode).

Next, a discussion to have is if an sqlite database would still be needed in that case (and only that case, I'm not breaking support for current deployments), or if a Kubernetes mode would imply that registration is disabled (thus, the route for registration is no-op) and that registration and "unregistration" are done by polling secrets.

What do you think? I can still maintain my sidecar for my use-case, it will still work.

Originally created by @Exagone313 on GitHub (Sep 13, 2021). Original GitHub issue: https://github.com/acme-dns/acme-dns/issues/277 Hi, I've created the project [acme-dns-sidecar](https://github.com/Exagone313/acme-dns-sidecar) that reads Kubernetes secrets and write values into the sqlite database. I succeeded to create a "stateless" acme-dns deployment where I don't use any volume, but I can still add or remove users at will without redeploying acme-dns. I'm willing to port the feature to acme-dns directly, but I wish to discuss the implementation. The first issue is that it would add a new dependency, that needs to be maintained as Kubernetes is updated (this also means that not all versions of Kubernetes will be supported, as the API changes, for the Kubernetes mode). Next, a discussion to have is if an sqlite database would still be needed in that case (and only that case, I'm not breaking support for current deployments), or if a Kubernetes mode would imply that registration is disabled (thus, the route for registration is no-op) and that registration and "unregistration" are done by polling secrets. What do you think? I can still maintain my sidecar for my use-case, it will still work.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
fix_dockerhub
dockerhub
readme2.0
goreleaser_action
refactoring
linter_update_config
update_deps_122
dependabot/go_modules/github.com/valyala/fasthttp-1.34.0
deps_bump
update_goreleaser
update_golint
deps_update
update_dockerfile
v2.0.2
v2.0.1
v2.0
v1.1
v1.0
v0.8
v0.7.2
v0.7.1
v0.7
v0.6
v0.5
v0.4
v0.3.2
v0.3.1
v0.3
v0.2
v0.1
Labels
Clear labels   
Documentation

   
Documentation

   
bug

   
enhancement

   
feature request

   
feature request

   
help wanted

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
security

   
security

   
testing
No labels
Documentation
Documentation
bug
enhancement
feature request
feature request
help wanted
pull-request
question
security
security
testing
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/acme-dns#141
No description provided.