Allow configuration of an external webhook and its associated certs in the Porch API server #554
Labels
area/platform
area/porch
Porch related issues
enhancement
New feature or request
sig/automation
triaged
Milestone
The Porch API server can use a validating webook to check whether delete requests should be allowed or not. If the CERT_STORAGE_DIR environment variable is not set, Porch does not validate deletions. If the CERT_STORAGE_DIR environment variable is set, Porch generates a validating webhook and its associated certs.
Using a webhook ensures that resources are only deleted when the user has authority to do so.
However, the Porch API server cannot today be configured to use an externally configured webhook. In addition, the current self generated webhook has a number of drawbacks:
This issue proposes adding support for externally configured webhooks to the Porch API server.
The text was updated successfully, but these errors were encountered: