JustForFun/kubernetes-learn
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

sealed_secrets: Add more tips

Browse source
This commit is contained in:
Florian RICHER 2025-04-17 17:28:30 +02:00
parent e09887de96
commit 6e86e1c983
1 changed files with 20 additions and 6 deletions
Download patch file Download diff file Expand all files Collapse all files

24
sealed_secrets/README.md
View file

@ -13,16 +13,30 @@ helm install sealed-secrets sealed-secrets/sealed-secrets -f helm/values
2. Create a secret
```console
kubectl create secret generic sealed-test-secret --dry-run=client --from-env-file=secrets/mysecrets.env -o yaml | kubeseal \
kubectl create secret generic <secret-name> --dry-run=client --from-env-file=<myfile.env> -o yaml | kubeseal \
--controller-name=sealed-secrets \
--controller-namespace=default \
--format yaml
--controller-namespace=<namespace> \
--format yaml \
-n <namespace>
```
OR
```console
echo -n "MySecret" | kubeseal --raw --name sealed-test-secret \
echo -n "MySecret" | kubeseal --raw --name <secret-name> \
--controller-name=sealed-secrets \
--controller-namespace=default
--controller-namespace=<namespace> \
-n <namespace>
```
3. Validate encrypted data
```
cat <mysealedsecretfile.yaml> | kubeseal --validate --controller-name=sealed-secrets --controller-namespace=<namespace>
```
4. Check status of sealed secret
```
kubectl describe sealedsecrets.bitnami.com/<secret-name> -n <namespace>
```