mirrors/ceph-csi
1
0
Fork 0
mirror of https://github.com/ceph/ceph-csi.git synced 2024-09-19 15:09:56 +00:00
Code Issues Packages Projects Releases Wiki Activity
4f0bb2315b
ceph-csi/vendor
History
Rakshith R 4f0bb2315b rbd: add aws-sts-metdata encryption type 
With Amazon STS and kubernetes cluster is configured with
OIDC identity provider, credentials to access Amazon KMS
can be fetched using oidc-token(serviceaccount token).
Each tenant/namespace needs to create a secret with aws region,
role and CMK ARN.
Ceph-CSI will assume the given role with oidc token and access
aws KMS, with given CMK to encrypt/decrypt DEK which will stored
in the image metdata.

Refer: https://docs.aws.amazon.com/STS/latest/APIReference/welcome.html
Resolves: #2879

Signed-off-by: Rakshith R <rar@redhat.com>
2022-03-16 07:29:56 +00:00
..
github.com rbd: add aws-sts-metdata encryption type 2022-03-16 07:29:56 +00:00
go.opentelemetry.io ci: update golang dependencies to 1.17.5 release 2021-12-13 07:32:54 +00:00
go.uber.org/atomic ci: update golang dependencies to 1.17.5 release 2021-12-13 07:32:54 +00:00
golang.org/x rebase: bump github.com/aws/aws-sdk-go from 1.43.3 to 1.43.8 2022-03-01 08:11:06 +00:00
gomodules.xyz/jsonpatch/v2 ci: update golang dependencies to 1.17.5 release 2021-12-13 07:32:54 +00:00
google.golang.org rebase: bump google.golang.org/grpc from 1.44.0 to 1.45.0 2022-03-15 12:19:19 +00:00
gopkg.in ci: update golang dependencies to 1.17.5 release 2021-12-13 07:32:54 +00:00
k8s.io rebase: bump k8s.io/kubernetes from 1.23.2 to 1.23.3 2022-02-09 15:16:21 +00:00
sigs.k8s.io rebase: bump k8s.io/kubernetes from 1.23.1 to 1.23.2 2022-01-26 20:05:06 +00:00
modules.txt rbd: add aws-sts-metdata encryption type 2022-03-16 07:29:56 +00:00