Skip to content

Feature: Credential updates for nodepools #1967

New issue
New issue
Open
Open
Feature: Credential updates for nodepools#1967
Labels
featureNew feature
@Despire

Description

@Despire
Despire
opened on Feb 9, 2026

Motivation

Currently, there is no way to update credentials for existing nodepools. If provider API credentials or SSH private keys are rotated or expire, users must recreate the entire nodepool, causing unnecessary downtime and operational overhead.

Description

Allow users to update credentials in-place without requiring nodepool recreation. This includes provider credentials (e.g., AWS access keys, GCP service account JSON, Azure service principal secrets) for dynamic nodepools and SSH private keys for static nodepools. Updated credentials should be validated before being persisted and should not trigger any node reprovisioning or workload disruption.

Exit criteria

  • Ensure updated credentials are propagated and used in subsequent operations without requiring nodepool restart or recreation

Metadata

Metadata

Assignees

No one assigned

    Labels

    featureNew feature

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions