Skip to content

feat: allow using secrets for header for grpc/http exports#1156

Open
basti1302 wants to merge 1 commit into
mainfrom
ope-431-enable-grpchttp-headers-for-non-dash0-exports-via-kubernetes
Open

feat: allow using secrets for header for grpc/http exports#1156
basti1302 wants to merge 1 commit into
mainfrom
ope-431-enable-grpchttp-headers-for-non-dash0-exports-via-kubernetes

Conversation

@basti1302

Copy link
Copy Markdown
Member

No description provided.

@basti1302 basti1302 force-pushed the ope-431-enable-grpchttp-headers-for-non-dash0-exports-via-kubernetes branch from c9b8feb to 11f355a Compare July 1, 2026 07:03
@basti1302 basti1302 changed the title feat: all using secrets for header for grpc/http exports feat: allow using secrets for header for grpc/http exports Jul 1, 2026
@basti1302 basti1302 force-pushed the ope-431-enable-grpchttp-headers-for-non-dash0-exports-via-kubernetes branch 7 times, most recently from 172ed2f to 477e01b Compare July 3, 2026 15:52
Header values for non-Dash0 gRPC/HTTP exports can now also be sourced
from a Kubernetes secret, as an alternative to providing the value as a
literal.

Each header now takes exactly one of:
- value:     the header value as a literal string (as before), or
- valueFrom.secretKeyRef: a reference to a key in a Kubernetes secret
             holding the value, useful for sensitive data like
             authorization tokens or API keys.

A validation rule enforces that exactly one of the two is set. When a
header is sourced from a secret, the operator injects a corresponding
environment variable (backed by the secret) into the collector pod and
renders the header value in the collector config as a ${env:...}
reference, so the sensitive value is never stored in plain text in the
custom resource.

The secret must exist in the operator's namespace.
@basti1302 basti1302 force-pushed the ope-431-enable-grpchttp-headers-for-non-dash0-exports-via-kubernetes branch from 477e01b to 188ae5b Compare July 3, 2026 15:53
@basti1302

Copy link
Copy Markdown
Member Author

/run-e2e

@github-actions

github-actions Bot commented Jul 3, 2026

Copy link
Copy Markdown
Contributor

🚀 E2E tests triggered

  • Branch: ope-431-enable-grpchttp-headers-for-non-dash0-exports-via-kubernetes
  • Triggered by: @basti1302

Results will be posted here once the tests complete. You can also view the workflow runs directly.

@github-actions

github-actions Bot commented Jul 3, 2026

Copy link
Copy Markdown
Contributor

✅ E2E tests passed

  • Branch: ope-431-enable-grpchttp-headers-for-non-dash0-exports-via-kubernetes
  • Run: #28671082624

@basti1302 basti1302 marked this pull request as ready for review July 3, 2026 16:50
@basti1302 basti1302 requested a review from a team as a code owner July 3, 2026 16:50
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant