VMware Secrets Manager

ADR-0005: Be Resilient by Default

Calendar Favorite 1 Streamline Icon: https://streamlinehq.com Mark Your Calendars
The next VSecM Contributor Sync will be on…
Thursday, 2024-05-30 at 8:00am Pacific time.

  • Status: accepted
  • Date: 2024-05-11
  • Tags: quality, stability

Context and Problem Statement

When an VMware Secrets Manager component crashes or when an VMware Secrets Manager component is evicted, the workloads can still function with the existing secrets they have without having to rely on the existence of an active secrets store.

When an VMware Secrets Manager component restarts, it seamlessly recovers its state from an encrypted backup without requiring manual intervention.

Decision Drivers

  • Resilience is also related to being practically secure
  • A resilient system is easy to operate, maintain, and troubleshoot.
  • To have a highly-available system, we need to be resilient first.

Considered Options

  1. Be resilient by default.
  2. Think about resilience only when we have time.

Decision Outcome

Chosen option: “option 1”, because we cannot afford to have a system that is not resilient.

Positive Consequences

  • DevOps will sleep more.

Negative Consequences

  • Additional work upfront.
  • Additional complexity in the system.

results matching ""

    No results matching ""

    ⭐️ Star VMware Secrets Manager to show your support ⭐️
    your support helps us to reach out to even more people with this amazing tech

    «« previous next »»