Add certificate/key granular error handling for AKV provider
Opened this issue · 0 comments
akashsinghal commented
What would you like to be added?
Currently, AKV KMP provider will fail to create if any key/certificate fetch operation fails. This causes a blocking operation for the entire resource if just one key/certificate is misconfigured, disabled etc.
Ratify should:
- Introduce a new message field to the existing key/certificates status. This can be used to surface errors specific to a single key/certificate.
- Refactor the KeyManagementProvider resource status struct to return the entire keys/certs status map even on failure. Currently it only returns the brief error and the full error on failure.
Anything else you would like to add?
No response
Are you willing to submit PRs to contribute to this feature?
- Yes, I am willing to implement it.