-
Notifications
You must be signed in to change notification settings - Fork 404
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Enable volume mounted secret bindings in Kyma Functions #14998
Labels
area/serverless
Issues or PRs related to serverless
kind/feature
Categorizes issue or PR as related to a new feature.
Milestone
Comments
kwiatekus
added
area/serverless
Issues or PRs related to serverless
kind/feature
Categorizes issue or PR as related to a new feature.
labels
Aug 4, 2022
Blocked by #15233 |
4 tasks
kwiatekus
changed the title
Enable Volume Mounts in Function CR
Enable Mounting Secrets and ConfigMaps in Function Pod
Oct 13, 2022
Waits for decision #15862 |
kwiatekus
changed the title
Enable Mounting Secrets and ConfigMaps in Function Pod
Enable secret bindings in Kyma Functions
Nov 2, 2022
kwiatekus
changed the title
Enable secret bindings in Kyma Functions
Enable volume mounted secret bindings in Kyma Functions
Nov 2, 2022
Scenario from manual test: |
5 tasks
1 task
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Labels
area/serverless
Issues or PRs related to serverless
kind/feature
Categorizes issue or PR as related to a new feature.
Description
In order to use BTP service instances natively with @sap/xsenv, you need to create a "volume" from the secret (automatically created by the ServiceBinding resource) in the Pod template spec and then mount the volume to a specific path via a "volumeMount" in the container spec. This is described here: https://blogs.sap.com/2022/07/12/the-new-way-to-consume-service-bindings-on-kyma-runtime/.
In order to use BTP service instances also in Kyma serverless Functions, the Function CR would need to support the same:
Technically a function also creates a Pod and a Container, so it should be possible to allow volumes and volumeMounts. Under the hood, the function even uses a "tmp-dir" volume mounted to the path "tmp". So it should be a quite simple addition to allow custom volumes and volumeMounts in the Function spec?
Serverless function from the nature should be stateless... and not needing persistance.
Limit the volume mounts to secrets and config maps (Read only ).
**Related **
Reasons
This is required in order to use BTP Service Instances (which are supported on Kyma) in serverless Functions.
Attachments
Proposal for secretMounts
https://github.com/kyma-project/kyma/blob/main/components/function-controller/design/extend_function_spec_proposal.md#final-version---the-compromise
The text was updated successfully, but these errors were encountered: