Skip to content

Remove node.machine.sapcloud.io/trigger-deletion-by-mcm annotation #1051

New issue
New issue
Open
#1055
Open
Remove node.machine.sapcloud.io/trigger-deletion-by-mcm annotation#1051
#1055
Assignees
gagan16k
Labels
area/control-planeControl plane relatedarea/securitySecurity relatedcomponent/mcmMachine Controller Manager (including Node Problem Detector, Cluster Auto Scaler, etc.)kind/enhancementEnhancement, improvement, extension
@gagan16k

Description

@gagan16k
gagan16k
opened on Nov 14, 2025

How to categorize this issue?
/area security
/area control-plane
/kind enhancement

What is expected to happen:
Node deletion should be natively supported in MCM instead of additional annotation.

How to reproduce it (as minimally and precisely as possible):

  1. Create a Shoot.
  2. Create an user with only patch/update permissions for Nodes.
  3. Make sure that the user from the above step can delete Nodes by annotating them with node.machine.sapcloud.io/trigger-deletion-by-mcm="true".

What would you like to be added:

  • Remove support for node.machine.sapcloud.io/trigger-deletion-by-mcm annotation
  • Users should be able delete nodes directly using kubectl delete node <node_name>.
  • MCM should then proceed to delete the corresponding Machine/VM instance. We could use a custom finalizer on the Node to coordinate this flow, and remove this finalizer when the machine deletion is completed

Metadata

Metadata

Assignees

Labels

area/control-planeControl plane relatedarea/securitySecurity relatedcomponent/mcmMachine Controller Manager (including Node Problem Detector, Cluster Auto Scaler, etc.)kind/enhancementEnhancement, improvement, extension

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions