AuthJanitor icon indicating copy to clipboard operation
AuthJanitor copied to clipboard
verified publisher icon microsoft

AKS Application Lifecycle Provider

Open anthturner opened this issue 5 years ago • 2 comments

This is one of the more requested providers but it will also be very difficult for similar reasons to the AppServices providers, in that it needs to implement interlocked rotation.

anthturner avatar May 14 '20 19:05 anthturner

What needs to be done at a high level, from @jwendl --

  • Update destination key with secondary key
  • Rev the container and create a matching pair of instances for the application (if the app has 3 instances, create 3 more to make 6)
  • Move ingress to the second set of 3
  • Test that the change worked
  • Permanently move ingress to the second set of 3
  • Delete original 3 instances
  • Rotate/dispose of original key

anthturner avatar May 14 '20 22:05 anthturner

This is a big-time "help wanted" because I'm wholly unfamiliar with the k8s .NET SDK.

anthturner avatar May 14 '20 22:05 anthturner