I have the same Job as a bash script that needs to check for multiple different applications that need storage whether storage application is running already.
What would be the best-practice be, with security in mind?
This is my approach with an Application x (Application Namespace)
ClusterRole (Permissions, no namespace)
RoleBinding (Namespace of Storage App)
ServiceAccount (Namespace of Storage App)
Job (Namespace of Storage App using ServiceAccount)
ConfigMap with Bash Script (Namespace of Storage App)
For me the only working solution is above config. I would have to re-create Job and Configmap with different names for each applications to run their respective bash scripts in the Storage Namespace without conflicting each other, so to be able to run in parallel.
