Dynamic Feature Flags with ConfigMaps — Fast, Dirty, Works Anyway

Shipping fast is great—until you ship something wrong.

You know what sucks? Pushing a new feature, then realizing it’s buggy or just plain annoying, and having to redeploy your entire app to turn it off. Cue angry Slack messages, frantic late-night fixes, and that sinking feeling in your gut.

But what if you could just flip a switch—no redeploys, no restarts, no downtime? Welcome to the world of dynamic feature flag reloading using Kubernetes ConfigMaps. It’s not pretty. It’s not fancy. But it works. And sometimes, that’s enough.

Let’s talk about how you can set this up so your app notices config changes on the fly and adjusts behavior immediately. It’s not magic—it’s just a little smart engineering. —no external tools, no SaaS subscriptions, no yak shaving.

Why ConfigMaps Are the Unsung Heroes of Feature Flags#

Kubernetes ConfigMaps are perfect for storing config outside your app code. You can update a ConfigMap anytime, and your app can read the latest values without a new build.

But here’s the catch: by default, when you mount a ConfigMap as environment variables, your app only reads them at startup. Change the ConfigMap, and your app won’t know unless you restart it.

That’s not dynamic — it’s just “reliable, predictable static.” We want dynamic.

Step 1: Mount the ConfigMap as a Volume (Not Env Vars)#

If you mount the ConfigMap as files inside your container, Kubernetes automatically updates those files when you change the ConfigMap.

Example snippet:

volumes:
  - name: feature-flags
    configMap:
      name: feature-flags
containers:
  - name: your-app
    volumeMounts:
      - name: feature-flags
        mountPath: /etc/feature-flags
        readOnly: true

Now your app can read /etc/feature-flags/BetaFeature as a plain text file—and guess what? When you kubectl apply a new ConfigMap, Kubernetes updates that file on the fly inside your pod.

Step 2: Make Your App Check the Flag File Periodically#

You don’t need a full file watcher to be somewhat dynamic. Just have your app read the flag file every few seconds.

Here’s a tiny Python snippet:

import time

FEATURE_FLAG_FILE = "/etc/feature-flags/BetaFeature"

def read_flag():
try:
with open(FEATURE_FLAG_FILE, "r") as f:
return f.read().strip().lower() == "true"
except Exception:
return False # Default to feature off on error

while True:
if read_flag():
print("Beta feature is ON!")
else:
print("Beta feature is OFF.")
time.sleep(5) # Check every 5 seconds

It’s not the fanciest thing, but it gets the job done: your app reacts to config changes in near real-time without restarts.

Step 3: Update ConfigMap Without a Redeploy#

Change your feature flag with:

kubectl patch configmap feature-flags --type merge -p '{"data":{"BetaFeature":"false"}}'

Or manage your configmap in GitOps tooling like Flux or Argo.

Your pod’s /etc/feature-flags/BetaFeature updates instantly, and your app picks up the change within seconds.

⚠️ Caveats & Trade‑offs#

1. File Polling Doesn’t Scale Elegantly Hundreds of services × dozens of pods × polling every few seconds can consume noticeable CPU. At very large scale, prefer an event‑driven watcher or a dedicated flag service that pushes updates.

2. Conditional Targeting Needs Extra Logic Want “5 % of EU users only”? You’ll have to code that logic yourself. A common workaround is to pair canary deployments with separate ConfigMaps (e.g., feature-flags‑canary) so that only the canary pods see the experimental flag values.

3. Auditing, Rollback, RBAC ConfigMaps lack built‑in version history; rely on GitOps for diff/rollback and tighten RBAC so only trusted roles can patch flags.

Why This Rocks (And What to Watch Out For)#

Pros:

• No external (SaaS or selfhosted) tooling required.
• No app restarts / downtime during feature toggling.
• Quick reaction to bugs or business changes.
• No complex selfhosted feature flag services needed (unless you want to).

Cons:

• Slight delay due to polling interval.
• More load on your app if you check too frequently.
• Not ideal for huge distributed systems without extra syncing.
• Need to load default variables for when ConfigMap is not available in cluster.
• Not as managed/extensible as a normal feature flagging system.

When does this make sense?#

Mounting ConfigMaps as files unlocks live feature toggling with minimal plumbing. For small to mid‑size clusters—or as a bootstrap before you adopt LaunchDarkly, Unleash, etc.—it’s a pragmatic middle ground:

• Small team, simple flags? Stick with file‑mounted ConfigMaps.

• Global fleet, sophisticated rollouts? Graduate to a purpose‑built flagging platform—or invest in event‑driven watchers plus canary‑scoped ConfigMaps.

Either way, you can now flip features without fear—and without that 2 a.m. redeploy. Happy shipping!

Picking the right tool for the right job.#

Here’s the honest answer:

When this makes sense:

• You’re working on a small team or service.

• You just need a flag or two.

• You want to avoid extra tooling.

• You don’t want to redeploy to toggle a feature.

• You’re fine with polling every few seconds.

This is perfect for quick experiments, internal toggles, and hotfixes you want to be able to roll back in seconds.

When you should go bigger:

• You need per-user targeting (“5% of EU users only”).

• You want real-time updates, not polling.

• You need audit logs, history, and version control.

• You’re dealing with hundreds of flags or services.

• You need remote control, like enabling flags from a dashboard without touching K8s.

In those cases, you want a real feature flag system—LaunchDarkly, Unleash, Flagsmith, etc. Or build your own if you’re into pain.

Closing arguments#

This is the fast and dirty way to toggle features in Kubernetes.

It’s not robust. It’s not elegant. It doesn’t have a UI.

But it works. And sometimes, working is what you need.

If you’re building something that’s mostly internal, experimental, or tactical—this approach is the perfect no-bullshit solution.

If you’re building a product with customers and scale—go get yourself a real feature flag system.

Know when to ship quick, and when to engineer properly.

Both are valid. Just don’t confuse one for the other.