Context
If a cluster has sensitive, but autogenerated or externally managed objects then I don't want those to be dumped by the object-dumper script for backup by k8up. Examples of such objects include:
- TLS-ACME certificates
- Service account tokens
- Helm releases
Since sensitive objects are almost always Secrets, maybe it would make sense to be able to exclude Secret objects by Secret type? Or at least be able to add a label to exclude an object from backup.
Alternatives
I could use an alternative to the object-dumper script to dump my objects. But this project has integration for use with k8up.
Are there any existing alternative object-dumping tools for use with k8up for a "full cluster backup" that has object filtering capabilities?
I guess this is related to k8up-io/k8up#908, because if k8up gained this functionality natively then I could stop using object-dumper.
Context
If a cluster has sensitive, but autogenerated or externally managed objects then I don't want those to be dumped by the
object-dumperscript for backup by k8up. Examples of such objects include:Since sensitive objects are almost always Secrets, maybe it would make sense to be able to exclude Secret objects by Secret type? Or at least be able to add a label to exclude an object from backup.
Alternatives
I could use an alternative to the object-dumper script to dump my objects. But this project has integration for use with k8up.
Are there any existing alternative object-dumping tools for use with k8up for a "full cluster backup" that has object filtering capabilities?
I guess this is related to k8up-io/k8up#908, because if k8up gained this functionality natively then I could stop using object-dumper.