Skip to content

helm: Run coder with an external ServiceAccount #4620

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
Tracked by #4628
bpmct opened this issue Oct 18, 2022 · 5 comments
Closed
Tracked by #4628

helm: Run coder with an external ServiceAccount #4620

bpmct opened this issue Oct 18, 2022 · 5 comments
Assignees
@ericpaulsen
Milestone
EE

Comments

@bpmct
Copy link
Member

bpmct commented Oct 18, 2022

In order to give Kubernetes deployment access to other clouds & resources (e.g. create GKE VMs, AWS VMs) we should add an option to specify a serviceaccount
@bpmct bpmct added this to the EE milestone Oct 18, 2022
@ericpaulsen
Copy link
Member

I can take this on.

@ericpaulsen ericpaulsen self-assigned this Oct 18, 2022
@kylecarbs
Copy link
Member

Should we allow just mounting arbitrary files in general? Seems like I might want to store my GCP or AWS credentials in files?

@ericpaulsen
Copy link
Member

yes but in addition, we'd likely need to support custom SA annotations for stuff with IAM policy bindings, e.g. Google Workload Identity

@bpmct bpmct changed the title Helm: Run coder with an external ServiceAccount helm: Run coder with an external ServiceAccount Oct 18, 2022
@bpmct bpmct mentioned this issue Oct 18, 2022
Closed
13 tasks
@ericpaulsen ericpaulsen mentioned this issue Oct 19, 2022
Merged
@bpmct
Copy link
Member Author

bpmct commented Oct 19, 2022

Should we allow just mounting arbitrary files in general? Seems like I might want to store my GCP or AWS credentials in files?

created #4246 to address this

@bpmct
Copy link
Member Author

bpmct commented Oct 19, 2022

closed as completed by #4640

@bpmct bpmct closed this as completed Oct 19, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@ericpaulsen ericpaulsen

Labels
None yet
Projects
None yet
Milestone
EE
Development

No branches or pull requests
3 participants
@kylecarbs @ericpaulsen @bpmct