Step 4: Set up the StorageClass

StorageClass for CSI

The following CSI StorageClass enables your tenants to create volumes using their token stored in a secret in their namespace.

When using CSI, the storage class references the secret for the three types of supported operations:

  • provision
  • node-publish (mount/unmount)
  • controller-expand
kind: StorageClass
  name: px-storage
  repl: "1" px-k8s-user ${pvc.namespace} px-k8s-user ${pvc.namespace} px-k8s-user ${pvc.namespace}
allowVolumeExpansion: true

Note the value ${pvc.namespace}. This will ensure that the CSI controller gets the appropriate token, which is tied to the namespace of the PVC.

Last edited: Monday, Aug 3, 2020